← Back

CVE-2023-47716

nvd nist
Published: Mar 1, 2024Modified: Aug 15, 2025

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

IBM CP4BA - Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a user to gain the privileges of another user under unusual circumstances. IBM X-Force ID: 271656.

Affected (5)

Ibm
2 products
Cp4ba Filenet Content Manager
Filenet Content Manager
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Ibm
Cp4ba Filenet Content Manager
Version 21.0.3
Cp4ba Filenet Content Manager
Version 23.0.1
Ibm
Filenet Content Manager
Version 5.5.10
Filenet Content Manager
Version 5.5.11
Filenet Content Manager
Version 5.5.8

Related CWEs

CWE-863
Incorrect Authorization
The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

References (4)

Source: psirt@us.ibm.com
Vendor Advisory
Source: psirt@us.ibm.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.