Vulnerability Description
The Editor in IBM ENOVIA SmarTeam 5 before release 18 SP5, and release 19 before SP01, allows remote authenticated users to bypass intended access restrictions and read Document objects via the Workflow Process (aka Flow Process) view.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Enovia Smarteam | 5 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/32105Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27012567&aid=1Vendor Advisory
- http://www-1.ibm.com/support/docview.wss?uid=swg1HD71425Vendor Advisory
- http://www.securityfocus.com/bid/31748
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45943
- http://secunia.com/advisories/32105Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27012567&aid=1Vendor Advisory
- http://www-1.ibm.com/support/docview.wss?uid=swg1HD71425Vendor Advisory
- http://www.securityfocus.com/bid/31748
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45943
FAQ
What is CVE-2008-4581?
CVE-2008-4581 is a vulnerability with a CVSS score of 4.0 (MEDIUM). The Editor in IBM ENOVIA SmarTeam 5 before release 18 SP5, and release 19 before SP01, allows remote authenticated users to bypass intended access restrictions and read Document objects via the Workfl...
How severe is CVE-2008-4581?
CVE-2008-4581 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4581?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Enovia Smarteam.