CVE-2014-2512

Name of the Vulnerable Software and Affected Versions EMC Documentum eRoom versions 7.4.3 through 7.4.4 before P19 EMC Documentum eRoom version 7.4.4 SP1

Description The issue allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, which can lead to cross-site scripting (XSS) attacks.

Recommendations For EMC Documentum eRoom versions 7.4.3 through 7.4.4 before P19, apply patch P19 to resolve the issue. For EMC Documentum eRoom version 7.4.4 SP1, update to a version that includes the necessary security fixes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.