PT-2014-6035 · Emc · Emc Documentum Content Server

Published

2014-12-06

Updated

2018-10-09

CVE-2014-4629

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions EMC Documentum Content Server versions 6.7 before SP2 P19 EMC Documentum Content Server versions 7.0 through 7.1 before 7.1 P10

Description The issue allows remote authenticated users to read or delete arbitrary files via unspecified vectors related to an insecure direct object reference.

Recommendations For versions 6.7 before SP2 P19, update to SP2 P19 or later to resolve the issue. For versions 7.0 through 7.1 before 7.1 P10, update to 7.1 P10 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2014-4629

Affected Products

Emc Documentum Content Server

PT-2014-6035 · Emc · Emc Documentum Content Server

CVE-2014-4629

Weakness Enumeration

Related Identifiers

Affected Products

References · 6