CVE Vulnerabilities

CVE-2014-4622

Published: Sep 17, 2014 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.1 HIGH
AV:N/AC:H/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

EMC Documentum Content Server before 6.7 SP2 P17, 7.0 through P15, and 7.1 before P08 does not properly check authorization for subgroups of privileged groups, which allows remote authenticated sysadmins to gain super-user privileges, and bypass intended restrictions on data access and server actions, via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Documentum_content_server Emc * 6.7 (including)
Documentum_content_server Emc 6.0 (including) 6.0 (including)
Documentum_content_server Emc 6.5 (including) 6.5 (including)
Documentum_content_server Emc 6.5-sp1 (including) 6.5-sp1 (including)
Documentum_content_server Emc 6.5-sp2 (including) 6.5-sp2 (including)
Documentum_content_server Emc 6.5-sp3 (including) 6.5-sp3 (including)
Documentum_content_server Emc 6.6 (including) 6.6 (including)
Documentum_content_server Emc 6.7 (including) 6.7 (including)
Documentum_content_server Emc 6.7-sp1 (including) 6.7-sp1 (including)
Documentum_content_server Emc 7.0 (including) 7.0 (including)
Documentum_content_server Emc 7.1 (including) 7.1 (including)

References