Описание
EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive information via vectors involving cross-origin frame navigation, related to a "Cross Frame Scripting" issue.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:emc:documentum_records_manager:6.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_records_manager:6.7:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_taskspace:6.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_taskspace:6.7:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_wdk:6.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_wdk:6.7:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_webtop:6.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_webtop:6.7:sp1:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00224
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive information via vectors involving cross-origin frame navigation, related to a "Cross Frame Scripting" issue.
EPSS
Процентиль: 45%
0.00224
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-20