Document Sciences Xpression Security Vulnerabilities and Issues — Document Sciences Xpression CVE List

EmcDocument Sciences Xpression

6 matches found

CVE•added 2013/11/21 2:0 a.m.•51 views

CVE-2013-6174

EMC Document Sciences xPression contains an open redirect vulnerability (CVE-2013-6174) in the xAdmin application (and related xDashboard context) that could be exploited to redirect users to arbitrary sites for phishing. Affected versions are 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5...

5.8CVSS7AI score0.02403EPSS

CVE•added 2013/11/21 2:0 a.m.•48 views

CVE-2013-6175

EMC Document Sciences xPression CVE-2013-6175 describes multiple XSS flaws in xAdmin and xDashboard that could allow an authenticated user to inject script/HTML via input. Affected versions include 4.1 SP1 prior to Patch 47, 4.2 prior to Patch 26, and 4.5 prior to Patch 05. The issues are part of...

4.3CVSS5.8AI score0.02261EPSS

CVE•added 2013/11/21 2:0 a.m.•48 views

CVE-2013-6177

CVE-2013-6177 affects EMC Document Sciences xPression in versions 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05 (Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine). Description: a Path Traversal vulnerability in xDashboard allows...

3.5CVSS6.4AI score0.02317EPSS

CVE•added 2013/11/21 2:0 a.m.•45 views

CVE-2013-6173

EMC Document Sciences xPression is affected by CSRF vulnerabilities (CVE-2013-6173) in xAdmin/xDashboard. Affected product lines: Enterprise Edition Publish Engine and Compuset Engine, and Documentum Edition. Versions: 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05. Impact:...

6.8CVSS7.4AI score0.01296EPSS

CVE•added 2013/11/21 2:0 a.m.•45 views

CVE-2013-6176

Affected product: EMC Document Sciences xPression (Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine) in versions 4.1 SP1 pre-Patch 47, 4.2 pre-Patch 26, and 4.5 pre-Patch 05. Vulnerability type: Multiple SQL injection vulnerabilities (CVE-2013-6176) af...

6.5CVSS8.2AI score0.02177EPSS

CVE•added 2015/05/25 7:0 p.m.•42 views

CVE-2015-0540

CVE-2015-0540 affects EMC Document Sciences xPression (xAdmin interface) 4.2 before P44 and 4.5 SP1 before P03. The issue is a SQL injection vulnerability in the xAdmin interface that could allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, potentially com...

6.5CVSS8.1AI score0.00991EPSS