Lucene search

DellCVE-2015-0551

HistoryJul 04, 2015 - 2:59 p.m.

CVE-2015-0551

2015-07-0414:59:00

CWE-79

dell

web.nvd.nist.gov

cve

2015

0551

xss

emc

documentum

webtop

administrator

digital assets manager

web publishers

task space

nvd

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

30.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop 6.7SP1 before P31, 6.7SP2 before P23, and 6.8 before P01; Documentum Administrator 6.7SP1 before P31, 6.7SP2 before P23, 7.0 before P18, 7.1 before P15, and 7.2 before P01; Documentum Digital Assets Manager 6.5SP6 before P25; Documentum Web Publishers 6.5 SP7 before P25; and Documentum Task Space 6.7SP1 before P31 and 6.7SP2 before P23 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

Nvd

Node

emcdocumentum_administratorMatch6.7sp1

emcdocumentum_administratorMatch6.7sp2

emcdocumentum_administratorMatch7.0

emcdocumentum_administratorMatch7.1

emcdocumentum_administratorMatch7.2

emcdocumentum_digital_asset_managerMatch6.5sp6

emcdocumentum_taskspaceMatch6.7sp1

emcdocumentum_taskspaceMatch6.7sp2

emcdocumentum_web_publisherMatch6.5sp7

emcdocumentum_webtopMatch6.7sp1

emcdocumentum_webtopMatch6.7sp2

emcdocumentum_webtopMatch6.8

VendorProductVersionCPE
emcdocumentum_administrator6.7cpe:2.3:a:emc:documentum_administrator:6.7:sp1:*:*:*:*:*:*
emcdocumentum_administrator6.7cpe:2.3:a:emc:documentum_administrator:6.7:sp2:*:*:*:*:*:*
emcdocumentum_administrator7.0cpe:2.3:a:emc:documentum_administrator:7.0:*:*:*:*:*:*:*
emcdocumentum_administrator7.1cpe:2.3:a:emc:documentum_administrator:7.1:*:*:*:*:*:*:*
emcdocumentum_administrator7.2cpe:2.3:a:emc:documentum_administrator:7.2:*:*:*:*:*:*:*
emcdocumentum_digital_asset_manager6.5cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp6:*:*:*:*:*:*
emcdocumentum_taskspace6.7cpe:2.3:a:emc:documentum_taskspace:6.7:sp1:*:*:*:*:*:*
emcdocumentum_taskspace6.7cpe:2.3:a:emc:documentum_taskspace:6.7:sp2:*:*:*:*:*:*
emcdocumentum_web_publisher6.5cpe:2.3:a:emc:documentum_web_publisher:6.5:sp7:*:*:*:*:*:*
emcdocumentum_webtop6.7cpe:2.3:a:emc:documentum_webtop:6.7:sp1:*:*:*:*:*:*

Vendor	Product	Version	CPE
emc	documentum_administrator	6.7	cpe:2.3:a:emc:documentum_administrator:6.7:sp1::::::
emc	documentum_administrator	6.7	cpe:2.3:a:emc:documentum_administrator:6.7:sp2::::::
emc	documentum_administrator	7.0	cpe:2.3:a:emc:documentum_administrator:7.0:::::::*
emc	documentum_administrator	7.1	cpe:2.3:a:emc:documentum_administrator:7.1:::::::*
emc	documentum_administrator	7.2	cpe:2.3:a:emc:documentum_administrator:7.2:::::::*
emc	documentum_digital_asset_manager	6.5	cpe:2.3:a:emc:documentum_digital_asset_manager:6.5:sp6::::::
emc	documentum_taskspace	6.7	cpe:2.3:a:emc:documentum_taskspace:6.7:sp1::::::
emc	documentum_taskspace	6.7	cpe:2.3:a:emc:documentum_taskspace:6.7:sp2::::::
emc	documentum_web_publisher	6.5	cpe:2.3:a:emc:documentum_web_publisher:6.5:sp7::::::
emc	documentum_webtop	6.7	cpe:2.3:a:emc:documentum_webtop:6.7:sp1::::::

Rows per page:

1-10 of 121

References

seclists.org/bugtraq/2015/Jul/9

www.securitytracker.com/id/1032770

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

30.0%

JSON

Related for CVE-2015-0551