8.5
CVE-2014-2506
- EPSS 3.22%
- Veröffentlicht 08.06.2014 04:31:53
- Zuletzt bearbeitet 06.05.2026 22:30:45
- Quelle security_alert@emc.com
- CVE-Watchlists
- Unerledigt
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to obtain super-user privileges for system-object creation, and bypass intended restrictions on data access and server actions, via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Emc ≫ Documentum Content Server Updatesp1 Version <= 6.7
Emc ≫ Documentum Content Server Version6.0
Emc ≫ Documentum Content Server Version6.5
Emc ≫ Documentum Content Server Version6.5 Updatesp1
Emc ≫ Documentum Content Server Version6.5 Updatesp2
Emc ≫ Documentum Content Server Version6.5 Updatesp3
Emc ≫ Documentum Content Server Version6.6
Emc ≫ Documentum Content Server Version6.7 Update-
Emc ≫ Documentum Content Server Version6.7 Updatesp2
Emc ≫ Documentum Content Server Version7.0
Emc ≫ Documentum Content Server Version7.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.22% | 0.866 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.5 | 6.8 | 10 |
AV:N/AC:M/Au:S/C:C/I:C/A:C
|
http://archives.neohapsis.com/archives/bugtraq/2014-06/0051.html
http://packetstormsecurity.com/files/126960/EMC-Documentum-Content-Server-Escalation-Injection.html
http://secunia.com/advisories/58954
http://www.securityfocus.com/archive/1/532596/100/0/threaded
http://www.securityfocus.com/bid/67917
http://www.securitytracker.com/id/1030339