Lucene search
PRIOn knowledge basePRION:CVE-2014-2520HistoryAug 20, 2014 - 11:17 a.m.
Design/Logic Flaw
2014-08-2011:17:00
PRIOn knowledge base
www.prio-n.com
5
6.4 Medium
AI Score
Confidence
Low
6.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:C/I:N/A:N
0.002 Low
EPSS
Percentile
53.8%
EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07, when Oracle Database is used, does not properly restrict DQL hints, which allows remote authenticated users to conduct DQL injection attacks and read sensitive database content via a crafted request.
Related
cve
cve
CVE-2014-2520
2014-08-20 11:17:00
CVE-2017-5585
2017-02-22 16:59:00
cvelist
cvelist
CVE-2014-2520
2014-08-20 10:00:00
CVE-2017-5585
2017-02-22 16:00:00
prion
prion
Design/Logic Flaw
2017-02-22 16:59:00
packetstorm
packetstorm
OpenText Documentum Content Server 7.3 SQL Injection
2017-02-16 00:00:00
securityvulns
securityvulns
ESA-2014-079: EMC Documentum Content Server Multiple Vulnerabilities
2014-08-26 00:00:00
EMC Documentum multiple security vulnerabilities
2015-09-14 00:00:00
nessus
nessus
EMC Documentum Content Server Multiple Vulnerabilities (ESA-2014-079)
2014-09-11 00:00:00
cert
cert
EMC Documentum products contain multiple vulnerabilities
2014-12-15 00:00:00
6.4 Medium
AI Score
Confidence
Low
6.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:C/I:N/A:N
0.002 Low
EPSS
Percentile
53.8%
Related for PRION:CVE-2014-2520