Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:06
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/60563 - | |
References | () http://www.securityfocus.com/archive/1/533159/30/0/threaded - | |
References | () http://www.securityfocus.com/bid/69277 - | |
References | () http://www.securitytracker.com/id/1030742 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/95365 - |
Information
Published : 2014-08-20 11:17
Updated : 2024-11-21 02:06
NVD link : CVE-2014-2518
Mitre link : CVE-2014-2518
CVE.ORG link : CVE-2014-2518
JSON object : View
Products Affected
emc
- task_space
- documentum_administrator
- web_publishers
- documentum_capital_projects
- documentum_wdk
- documentum_webtop
- digital_assets_manager
- documentum_records_manager
- engineering_plant_facilities_management_solution_for_documentum
CWE
CWE-352
Cross-Site Request Forgery (CSRF)