Lucene search

PRIOn knowledge basePRION:CVE-2014-2518

HistoryAug 20, 2014 - 11:17 a.m.

Cross site request forgery (csrf)

2014-08-2011:17:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

58.8%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users.

CPENameOperatorVersion
digital_assets_managereq6.5 sp5
digital_assets_managereq6.5
digital_assets_managereq6.5 sp6
documentum_administratoreq6.7 sp2
documentum_administratoreq6.7 sp1
documentum_administratoreq6.7
documentum_administratoreq7.1
documentum_administratoreq7.0
documentum_capital_projectseq1.8
documentum_capital_projectseq1.9

Name	Operator	Version
digital_assets_manager	eq	6.5 sp5
digital_assets_manager	eq	6.5
digital_assets_manager	eq	6.5 sp6
documentum_administrator	eq	6.7 sp2
documentum_administrator	eq	6.7 sp1
documentum_administrator	eq	6.7
documentum_administrator	eq	7.1
documentum_administrator	eq	7.0
documentum_capital_projects	eq	1.8
documentum_capital_projects	eq	1.9

Rows per page:

1-10 of 231

References

secunia.com/advisories/60563

www.securityfocus.com/archive/1/533159/30/0/threaded

www.securityfocus.com/bid/69277

www.securitytracker.com/id/1030742

exchange.xforce.ibmcloud.com/vulnerabilities/95365

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

58.8%

JSON

Related for PRION:CVE-2014-2518