CVE-2014-4629

EMC Documentum Content Server 7.0, 7.1 before 7.1 P10, and 6.7 before SP2 P19 allows remote authenticated users to read or delete arbitrary files via unspecified vectors related to an insecure direct object reference.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:emc:documentum_content_server:6.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.7:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.7:sp2:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:7.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:7.1:*:*:*:*:*:*:*

History

21 Nov 2024, 02:10

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/129376/EMC-Documentum-Content-Server-Insecure-Direct-Object-Reference.html - () http://packetstormsecurity.com/files/129376/EMC-Documentum-Content-Server-Insecure-Direct-Object-Reference.html -
References () http://www.securityfocus.com/archive/1/534135/100/0/threaded - () http://www.securityfocus.com/archive/1/534135/100/0/threaded -
References () http://www.securityfocus.com/bid/71422 - () http://www.securityfocus.com/bid/71422 -
References () http://www.securitytracker.com/id/1031298 - () http://www.securitytracker.com/id/1031298 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/99085 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/99085 -

Information

Published : 2014-12-06 15:59

Updated : 2024-11-21 02:10


NVD link : CVE-2014-4629

Mitre link : CVE-2014-4629

CVE.ORG link : CVE-2014-4629


JSON object : View

Products Affected

emc

  • documentum_content_server
CWE
CWE-264

Permissions, Privileges, and Access Controls