Design/Logic Flaw

2017-02-0307:59:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.9%

JSON

EMC Documentum D2 version 4.5 and EMC Documentum D2 version 4.6 has a DQL Injection Vulnerability that could potentially be exploited by malicious users to compromise the affected system. An authenticated low-privileged attacker could potentially exploit this vulnerability to access information, modify data or disrupt services by causing execution of arbitrary DQL commands on the application.

CPENameOperatorVersion
documentum_d2eq4.5
documentum_d2eq4.6

CPE	Name	Operator	Version
	documentum_d2	eq	4.5
	documentum_d2	eq	4.6

References

www.securityfocus.com/archive/1/540060/30/0/threaded

www.securityfocus.com/bid/95828

www.securitytracker.com/id/1037733