Lucene search

PRIOn knowledge basePRION:CVE-2014-2511

HistoryAug 20, 2014 - 11:17 a.m.

Cross site scripting

2014-08-2011:17:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

64.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1) startat or (2) entryId parameter.

CPENameOperatorVersion
digital_assets_managereq6.5 sp5
digital_assets_managereq6.5
digital_assets_managereq6.5 sp6
documentum_administratoreq6.7 sp2
documentum_administratoreq6.7 sp1
documentum_administratoreq6.7
documentum_administratoreq7.1
documentum_administratoreq7.0
documentum_capital_projectseq1.8
documentum_capital_projectseq1.9

Name	Operator	Version
digital_assets_manager	eq	6.5 sp5
digital_assets_manager	eq	6.5
digital_assets_manager	eq	6.5 sp6
documentum_administrator	eq	6.7 sp2
documentum_administrator	eq	6.7 sp1
documentum_administrator	eq	6.7
documentum_administrator	eq	7.1
documentum_administrator	eq	7.0
documentum_capital_projects	eq	1.8
documentum_capital_projects	eq	1.9

Rows per page:

1-10 of 241

References

secunia.com/advisories/60561

www.securityfocus.com/archive/1/533160/30/0/threaded

www.securityfocus.com/bid/69272

www.securitytracker.com/id/1030741

exchange.xforce.ibmcloud.com/vulnerabilities/95366

6.1 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

64.6%

JSON

Related for PRION:CVE-2014-2511