CVE-2012-0396

{"id": "CVE-2012-0396", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-02-06T20:55:02.737", "references": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html", "source": "security_alert@emc.com"}, {"url": "http://secunia.com/advisories/47920", "tags": ["Vendor Advisory"], "source": "security_alert@emc.com"}, {"url": "http://securitytracker.com/id?1026639", "source": "security_alert@emc.com"}, {"url": "http://www.securityfocus.com/bid/51863", "source": "security_alert@emc.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72994", "source": "security_alert@emc.com"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/47920", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1026639", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/51863", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72994", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or read object metadata, via a search."}, {"lang": "es", "value": "EMC Documentum xplore v1.0, v1.1 antes de vP07, y v1.2 no se aplican correctamente el requisito del permiso BROWSE, lo que permite determinar la existencia de un objeto o leer los metadatos del objeto a usuarios remotos autenticados, a trav\u00e9s de una b\u00fasqueda."}], "lastModified": "2024-11-21T01:34:54.190", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:emc:documentum_xplore:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F726F284-9D94-4255-82F9-3CFB41C71BFB"}, {"criteria": "cpe:2.3:a:emc:documentum_xplore:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB0BD961-2EF4-41B9-B027-7CBCEAA1835F"}, {"criteria": "cpe:2.3:a:emc:documentum_xplore:1.1:p01:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47E1CE7C-A9FA-4939-BBC5-31DF8A1BC167"}, {"criteria": "cpe:2.3:a:emc:documentum_xplore:1.1:p03:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73CEF3A0-A18D-46E9-8F5F-3371F2831DA9"}, {"criteria": "cpe:2.3:a:emc:documentum_xplore:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB79DB4E-2381-4698-9316-9410798EA79D"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}