CVE-2014-4629

EPSS 0.68%
Veröffentlicht 06.12.2014 15:59:01
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle security_alert@emc.com
Teams Watchlist Login
Unerledigt Login

EMC Documentum Content Server 7.0, 7.1 before 7.1 P10, and 6.7 before SP2 P19 allows remote authenticated users to read or delete arbitrary files via unspecified vectors related to an insecure direct object reference.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Emc ≫ Documentum Content Server Version6.7

Emc ≫ Documentum Content Server Version6.7 Updatesp1

Emc ≫ Documentum Content Server Version6.7 Updatesp2

Emc ≫ Documentum Content Server Version7.0

Emc ≫ Documentum Content Server Version7.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.68%	0.694

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9	8	10	AV:N/AC:L/Au:S/C:C/I:C/A:C

http://packetstormsecurity.com/files/129376/EMC-Documentum-Content-Server-Insecure-Direct-Object-Reference.html

http://www.securityfocus.com/archive/1/534135/100/0/threaded

http://www.securityfocus.com/bid/71422

http://www.securitytracker.com/id/1031298

https://exchange.xforce.ibmcloud.com/vulnerabilities/99085

https://nvd.nist.gov/vuln/detail/CVE-2014-4629

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-4629

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-4629

EUVD