Vulnerability Details CVE-2009-5001
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 4.0.2.x before 4.0.2.2-P8AE-FP002 grants a document's Creator-Owner full control over an annotation object, even if the default instance security has changed, which might allow remote authenticated users to bypass intended access restrictions in opportunistic circumstances.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 59.3%
CVSS Severity
CVSS v2 Score 4.0
Products affected by CVE-2009-5001
-
cpe:2.3:a:ibm:filenet_p8_application_engine:4.0.2