The vulnerability of the administration tool for electronic document management systems like OpenText Documentum Administrator arises from improper restrictions on XML references to external objects. This allows attackers to read arbitrary files or trigger service failures.
The vulnerability of the OpenText Documentum Administrator, a system administration tool, is related to an improper limitation on XML references to external objects XML External Entity, XXE. Exploiting this vulnerability could allow a malicious actor to read arbitrary files remotely, cause servic...