Lucene search
K

7 matches found

securityvulns
securityvulns
added 2015/08/24 12:0 a.m.42 views

EMC Documentum Content Server: arbitrary code execution (incomplete fix in CVE-2015-4532)

Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed For detailed description see http://seclists.org/bugtraq/2015/Jul/51 New behavior introduced in CVE-2015-4532: API ?,c,execute domethod WITH METHOD='dmbptransition', ARGUMENTS=' repo repo...

9CVSS1.1AI score0.03127EPSS
Exploits2
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.183 views

ESA-2015-131: EMC Documentum Content Server Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-131: EMC Documentum Content Server Multiple Vulnerabilities EMC Identifier: ESA-2015-131 CVE Identifier: CVE-2015-4531, CVE-2015-4532, CVE-2015-4533, CVE-2015-4534, CVE-2015-4535, CVE-2015-4536 Severity Rating: CVSS v2 Base Score: See below f...

9CVSS1.2AI score0.03926EPSS
Exploits8
NVD
NVD
added 2015/08/20 10:59 a.m.19 views

CVE-2015-4532

EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02 does not properly check authorization and does not properly restrict object types, which allows remote authenticated users to run save RPC commands with super-user privileges, an...

9CVSS8.8AI score0.03127EPSS
Exploits2References2
CVE
CVE
added 2015/08/20 10:0 a.m.56 views

CVE-2015-4532

CVE-2015-4532 affects EMC Documentum Content Server prior to specific service packs/patch levels (6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, 7.2 before P02). The root cause is insufficient authorization checks and lack of proper restriction of object types, enabling remote aut...

9CVSS8.6AI score0.03127EPSS
Exploits2References2Affected Software1
0day.today
0day.today
added 2015/08/19 12:0 a.m.77 views

EMC Documentum Content Server Code Execution Vulnerability

EMC Documentum Content Server suffers from an arbitrary code execution vulnerability. Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed For detailed description see http://seclists.org/bugtraq/2015/Jul/51 New behavior introduced in...

9CVSS9.2AI score0.03127EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2015/08/19 12:0 a.m.39 views

EMC Documentum Content Server Multiple Vulnerabilities (ESA-2015-131)

The version of EMC Documentum Content Server running on the remote host is affected by multiple vulnerabilities : - A privilege escalation vulnerability exists due to improper authorization checks performed on subgroups within the dmsuperusers group. An authenticated, remote attacker can exploit...

9CVSS9AI score0.03926EPSS
Exploits8References6
Packet Storm
Packet Storm
added 2015/08/18 12:0 a.m.36 views

EMC Documentum Content Server Code Execution

Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed For detailed description see http://seclists.org/bugtraq/2015/Jul/51 New behavior introduced in CVE-2015-4532: API ?,c,execute domethod WITH METHOD='dmbptransition', ARGUMENTS=' repo repo...

9CVSS0.03127EPSS
Exploits2
Rows per page
Query Builder