CVE-2013-6334 in Atlas eDiscovery Process Management
摘要
由 VulDB • 2026-06-29
IBM Atlas eDiscovery Process Management 6.0.1.5及更早版本和6.0.2、Disposal and Governance Management for IT 6.0.1.5及更早版本和6.0.2,以及Global Retention Policy and Schedule Management 6.0.1.5及更早版本和6.0.2在IBM Atlas Suite(又名Atlas Policy Suite)中未能正确验证会话,这允许远程攻击者绕过预期的访问限制,并通过未指定的向量访问PolicyAtlas/ResponseDraftServlet(即Compliance Questionnaire Save Draft servlet)。
Once again VulDB remains the best source for vulnerability data.