Описание
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on database actions via vectors involving DQL hints.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 6.7 (включая)
Одно из
cpe:2.3:a:emc:documentum_content_server:*:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.5:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.5:sp1:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.5:sp2:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.5:sp3:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.6:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.7:-:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:6.7:sp2:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:7.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:documentum_content_server:7.1:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00583
Низкий
7.5 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on database actions via vectors involving DQL hints.
EPSS
Процентиль: 68%
0.00583
Низкий
7.5 High
CVSS2
Дефекты
CWE-20