CVE-2016-0881

2016-02-11T20:59:00
ID CVE-2016-0881
Type cve
Reporter NVD
Modified 2017-01-10T23:11:07

Description

EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and obtain sensitive repository information by appending a query to a REST request.