CVE-2014-0642

EMC Documentum Content Server before 6.7 SP1 P26, 6.7 SP2 before P13, 7.0 before P13, and 7.1 before P02 allows remote authenticated users to bypass intended access restrictions and read metadata from certain folders via unspecified vectors.

Published: Apr 16, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-0642
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.5
AV:N/AC:L/Au:S/C:P/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
emc / documentum_content_server	6.7	6.7.x
emc / documentum_content_server	6.7-sp2	6.7-sp2.x
emc / documentum_content_server	7.0	7.0.x
emc / documentum_content_server	-	6.7.x
emc / documentum_content_server	6.0	6.0.x
emc / documentum_content_server	6.5-sp2	6.5-sp2.x
emc / documentum_content_server	6.5	6.5.x
emc / documentum_content_server	6.6	6.6.x
emc / documentum_content_server	6.5-sp1	6.5-sp1.x
emc / documentum_content_server	7.1	7.1.x
emc / documentum_content_server	6.5-sp3	6.5-sp3.x

http://archives.neohapsis.com/archives/bugtraq/2014-04/0072.html
http://twitter.com/artika4biz/statuses/455358950116823040

Vulnerability Database

289,784

CVE-2014-0642