Lucene search

[email protected]CVE-2013-0937

HistoryMay 10, 2013 - 11:42 a.m.

CVE-2013-0937

2013-05-1011:42:00

CWE-287

[email protected]

web.nvd.nist.gov

cve-2013-0937

session fixation

emc documentum

webtop

vulnerability

nvd

6.9 Medium

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

50.0%

JSON

Session fixation vulnerability in EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allows remote attackers to hijack web sessions via unspecified vectors.

CPENameOperatorVersion
emc:documentum_webtopemc documentum webtopeq6.7
emc:documentum_records_manageremc documentum records managereq6.7
emc:documentum_wdkemc documentum wdkeq6.7
emc:documentum_taskspaceemc documentum taskspaceeq6.7

CPE	Name	Operator	Version
emc:documentum_webtop	emc documentum webtop	eq	6.7
emc:documentum_records_manager	emc documentum records manager	eq	6.7
emc:documentum_wdk	emc documentum wdk	eq	6.7
emc:documentum_taskspace	emc documentum taskspace	eq	6.7

References

archives.neohapsis.com/archives/bugtraq/2013-05/0037.html

6.9 Medium

AI Score

Confidence

Low

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

50.0%

JSON

Related for CVE-2013-0937

prion1 cvelist1 securityvulns2