Lucene search
DellCVE-2015-4536HistoryAug 20, 2015 - 10:59 a.m.
CVE-2015-4536
2015-08-2010:59:18
CWE-200
dell
web.nvd.nist.gov
24
cve-2015-4536
emc
documentum content server
remote access
sensitive information disclosure
rpc tracing
security vulnerability
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6
Confidence
Low
EPSS
0.001
Percentile
49.6%
EMC Documentum Content Server before 7.0 P20, 7.1 before P18, and 7.2 before P02, when RPC tracing is configured, stores certain obfuscated password data in a log file, which allows remote authenticated users to obtain sensitive information by reading this file.
Affected configurations
Node
emcdocumentum_content_serverMatch7.0
ORemcdocumentum_content_serverMatch7.1
ORemcdocumentum_content_serverMatch7.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| emc | documentum_content_server | 7.0 | cpe:2.3:a:emc:documentum_content_server:7.0:*:*:*:*:*:*:* |
| emc | documentum_content_server | 7.1 | cpe:2.3:a:emc:documentum_content_server:7.1:*:*:*:*:*:*:* |
| emc | documentum_content_server | 7.2 | cpe:2.3:a:emc:documentum_content_server:7.2:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-4536
2015-08-20 10:00:00
nvd
nvd
CVE-2015-4536
2015-08-20 10:59:18
prion
prion
Design/Logic Flaw
2015-08-20 10:59:00
nessus
nessus
EMC Documentum Content Server Information Disclosure (ESA-2015-131)
2015-08-19 00:00:00
securityvulns
securityvulns
ESA-2015-131: EMC Documentum Content Server Multiple Vulnerabilities
2015-08-24 00:00:00
EMC Documentum multiple security vulnerabilities
2015-09-14 00:00:00
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6
Confidence
Low
EPSS
0.001
Percentile
49.6%
Related for CVE-2015-4536