Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-6174

Опубликовано: 21 нояб. 2013
Источник: nvd
CVSS2: 5.8
EPSS Низкий

Описание

Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:emc:document_sciences_xpression:4.1:sp1:-:*:documentum:*:*:*
cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:documentum:*:*:*
cpe:2.3:a:emc:document_sciences_xpression:4.5:-:-:*:documentum:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:emc:document_sciences_xpression:4.1:sp1:-:*:enterprise:-:-:compuset_engine
cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:enterprise:-:-:compuset_engine
cpe:2.3:a:emc:document_sciences_xpression:4.5:-:-:*:enterprise:-:-:compuset_engine
Конфигурация 3

Одно из

cpe:2.3:a:emc:document_sciences_xpression:4.1:sp1:-:*:enterprise:-:-:publish_engine
cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:enterprise:-:-:publish_engine
cpe:2.3:a:emc:document_sciences_xpression:4.5:-:-:*:enterprise:-:-:publish_engine

EPSS

Процентиль: 72%
0.00735
Низкий

5.8 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

github логотип

GHSA-8rp4-6hc9-cphq

github
больше 3 лет назад

Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified parameters.

EPSS

Процентиль: 72%
0.00735
Низкий

5.8 Medium

CVSS2

Дефекты

CWE-20