Unrated severityNVD Advisory· Published Sep 20, 2010· Updated Jun 16, 2026
CVE-2006-7241
CVE-2006-7241
Description
The Image Viewer component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-002 removes a user from an ACL when the user is denied all permissions for an annotation, which might allow remote authenticated users to bypass intended access restrictions in opportunistic circumstances.
Affected products
3cpe:2.3:a:ibm:filenet_p8_application_engine:3.5.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:filenet_p8_application_engine:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:filenet_p8_application_engine:3.5.1:001:*:*:*:*:*:*
- (no CPE)range: <3.5.1-002
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.