Based on the knowledge document (KB000043703) mentioned, is there any possibility on having users accessing data from other tenant users?
Service Desk 17.1
Service Desk 17.0
Service Desk 14.1
There is no possibility on having users accessing data from other tenant users if users do not have web role access to "All Tenants". Even though there is a role being set to "All Tenants", that role will be used only for the "Command Line Utility Role" in the access type. It does not mean the role have web access to Service Desk. It allows running commands in the operational system i.e. pdm_text_cmd for tickets creation, but it does not mean an user will be able to access the operational system and execute commands.
There is no way on having users passing commands through the URL because "SOAP Web Service" and "REST Web Service" API are not enabled for "All Tenants". Any additional and specific restrictions can be made through "Data Partitions" if necessary.