Article - CS375403

Potential undesired read access to sensitive information by authenticated users in Windchill PDMLink due to Apache Configuration

Modified: 08-Sep-2022   


Applies To

  • FlexPLM 11.1 M020
  • Windchill PDMLink 11.1 M020
  • Windchill PDMLink 11.2.1.0
  • FlexPLM 11.2.1.0
  • FlexPLM 12.0.0.0
  • FlexPLM 12.0.2.0
  • Windchill PDMLink 12.1.0.0
  • FlexPLM 12.0.3.0
  • Windchill PDMLink 12.0.2.0
  • Windchill PDMLink 12.1.1.0

Description

  • Potential undesired read access to sensitive information by authenticated users in Windchill PDMLink Apache Configuration
    • Researcher: Vladimir Toutain from DSecBypass reported this vulnerability to PTC
    This is a printer-friendly version of Article 375403 and may be out of date. For the latest version click CS375403