CVE-2014-0622
EMC Documentum Foundation Services 6.5-6.7 SP1 P21, 6.7 SP2 P07, 7.0 P11, 7.1 P00 - Content Access Restriction Bypass
Title source: llmDescription
The web service in EMC Documentum Foundation Services (DFS) 6.5 through 6.7 before 6.7 SP1 P22, 6.7 SP2 before P08, 7.0 before P12, and 7.1 before P01 does not properly implement content uploading, which allows remote authenticated users to bypass intended content access restrictions via unspecified vectors.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/65398
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/90982
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/102949
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2014-02/0007.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/56845
Scores
EPSS
0.0045
EPSS Percentile
63.7%
Details
CWE
CWE-264
Status
published
Products (5)
emc/documentum_foundation_services
6.5
emc/documentum_foundation_services
6.6
emc/documentum_foundation_services
6.7
emc/documentum_foundation_services
7.0
emc/documentum_foundation_services
7.1
Published
Feb 06, 2014
Tracked Since
Feb 18, 2026