Vulnerability Description
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to obtain super-user privileges for system-object creation, and bypass intended restrictions on data access and server actions, via unspecified vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Documentum Content Server | <= 6.7 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2014-06/0051.html
- http://packetstormsecurity.com/files/126960/EMC-Documentum-Content-Server-Escala
- http://secunia.com/advisories/58954
- http://www.securityfocus.com/archive/1/532596/100/0/threaded
- http://www.securityfocus.com/bid/67917
- http://www.securitytracker.com/id/1030339
- http://archives.neohapsis.com/archives/bugtraq/2014-06/0051.html
- http://packetstormsecurity.com/files/126960/EMC-Documentum-Content-Server-Escala
- http://secunia.com/advisories/58954
- http://www.securityfocus.com/archive/1/532596/100/0/threaded
- http://www.securityfocus.com/bid/67917
- http://www.securitytracker.com/id/1030339
FAQ
What is CVE-2014-2506?
CVE-2014-2506 is a vulnerability with a CVSS score of 8.5 (HIGH). EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to obtain super-user privileges for system-object creation, a...
How severe is CVE-2014-2506?
CVE-2014-2506 has been rated HIGH with a CVSS base score of 8.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-2506?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Documentum Content Server.