CVE-2009-0809

medium

Description

The Web Editor in Dassault Systemes ENOVIA SmarTeam V5 before Release 18 Service Pack 8, and possibly CATIA and other products, allows remote authenticated users to read the profile card of an object in the document class via a link that is sent from the owner of the document object.

References

http://www.vupen.com/english/advisories/2009/0525

http://www.securityfocus.com/bid/33895

http://www-01.ibm.com/support/docview.wss?uid=swg1HD80332

http://secunia.com/advisories/34037

Details

Source: Mitre, NVD

Published: 2009-03-04

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00186