EMC Documentum Content Server 7.0, 7.1 before 7.1 P10, and 6.7 before SP2 P19 allows remote authenticated users to read or delete arbitrary files via unspecified vectors related to an insecure direct object reference.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:10
Type | Values Removed | Values Added |
---|---|---|
References | () http://packetstormsecurity.com/files/129376/EMC-Documentum-Content-Server-Insecure-Direct-Object-Reference.html - | |
References | () http://www.securityfocus.com/archive/1/534135/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/71422 - | |
References | () http://www.securitytracker.com/id/1031298 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/99085 - |
Information
Published : 2014-12-06 15:59
Updated : 2024-11-21 02:10
NVD link : CVE-2014-4629
Mitre link : CVE-2014-4629
CVE.ORG link : CVE-2014-4629
JSON object : View
Products Affected
emc
- documentum_content_server
CWE
CWE-264
Permissions, Privileges, and Access Controls