CVE-2023-47716 MEDIUM

CVE-2023-47716: IBM FileNet Content Manager privilege escalation

Vendor Ibm
Product Filenet Content Manager
Weakness CWE-863 · Incorrect authorization
Published March 1, 2024
Last update September 20, 2024

CVSS base score

6.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

IBM CP4BA - Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a user to gain the privileges of another user under unusual circumstances. IBM X-Force ID: 271656.

Key dates

02Disclosure timeline

March 1, 2024 CVE published
September 20, 2024 Record updated

Related vulnerabilities

04Related CVE