CVE-2014-0642

2014-04-1523:13:16

CWE-264

[email protected]

web.nvd.nist.gov

emc

documentum

content server

vulnerability

bypass

access restrictions

metadata

nvd

6.2 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

46.3%

JSON

EMC Documentum Content Server before 6.7 SP1 P26, 6.7 SP2 before P13, 7.0 before P13, and 7.1 before P02 allows remote authenticated users to bypass intended access restrictions and read metadata from certain folders via unspecified vectors.

Affected configurations

NVD

Node

emcdocumentum_content_serverRange≤6.7sp1

emcdocumentum_content_serverMatch6.0

emcdocumentum_content_serverMatch6.5

emcdocumentum_content_serverMatch6.5sp1

emcdocumentum_content_serverMatch6.5sp2

emcdocumentum_content_serverMatch6.5sp3

emcdocumentum_content_serverMatch6.6

emcdocumentum_content_serverMatch6.7-

emcdocumentum_content_serverMatch6.7sp2

emcdocumentum_content_serverMatch7.0

emcdocumentum_content_serverMatch7.1

CPENameOperatorVersion
emc:documentum_content_serveremc documentum content serverle6.7
emc:documentum_content_serveremc documentum content servereq6.0
emc:documentum_content_serveremc documentum content servereq6.5
emc:documentum_content_serveremc documentum content servereq6.6
emc:documentum_content_serveremc documentum content servereq7.0
emc:documentum_content_serveremc documentum content servereq7.1

CPE	Name	Operator	Version
emc:documentum_content_server	emc documentum content server	le	6.7
emc:documentum_content_server	emc documentum content server	eq	6.0
emc:documentum_content_server	emc documentum content server	eq	6.5
emc:documentum_content_server	emc documentum content server	eq	6.6
emc:documentum_content_server	emc documentum content server	eq	7.0
emc:documentum_content_server	emc documentum content server	eq	7.1