CVE-2014-0629
EMC Documentum TaskSpace 6.7SP1-6.7SP2 - Authenticated Privilege Escalation via Group Addition
Title source: llmDescription
EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle the interaction between the dm_world group and the dm_superusers_dynamic group, which allows remote authenticated users to obtain sensitive information and gain privileges in opportunistic circumstances by leveraging an incorrect group-addition implementation.
References (1)
Core 1
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://seclists.org/bugtraq/2014/Mar/33
Scores
EPSS
0.0055
EPSS Percentile
68.0%
Details
CWE
CWE-264
Status
published
Products (1)
emc/documentum_taskspace
6.7 sp1 (2 CPE variants)
Published
Mar 06, 2014
Tracked Since
Feb 18, 2026