Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

emc documentum eroom vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2013-3286
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom prior to 7.4.4 P11 allow remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Emc Documentum Eroom 7.4.1Emc Documentum Eroom 7.4.0Emc Documentum Eroom 7.3.0Emc Documentum Eroom 7.4.3Emc Documentum EroomEmc Documentum Eroom 7.4.2
NA
CVE-2012-0398
EMC Documentum eRoom prior to 7.4.4 does not properly validate session cookies, which allows remote malicious users to hijack or replay sessions via unspecified vectors.
Emc Documentum EroomEmc Documentum Eroom 7.4.2Emc Documentum Eroom 7.4.1Emc Documentum Eroom 7.3.0
NA
CVE-2012-0404
Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom prior to 7.4.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Emc Documentum Eroom 7.4.1Emc Documentum Eroom 7.3.0Emc Documentum Eroom 7.4.2Emc Documentum Eroom
NA
CVE-2011-2739
The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x prior to 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file.
Emc Documentum Eroom 7.3.0Emc Documentum Eroom 7.4.2Emc Documentum Eroom 7.4.3Emc Documentum Eroom 7.4.1
NA
CVE-2011-1741
Stack-based buffer overflow in ftserver.exe in the OpenText Hummingbird Client Connector, as used in the Indexing Server in EMC Documentum eRoom 7.x prior to 7.4.3.f and other products, allows remote malicious users to execute arbitrary code by sending a crafted message over TCP.
Emc Documentum Eroom 7.4.2Emc Documentum Eroom 7.4.3Emc Documentum Eroom 7.4.1
9.8
CVSSv3
CVE-2017-2766
EMC Documentum eRoom version 7.4.4, EMC Documentum eRoom version 7.4.4 SP1, EMC Documentum eRoom version before 7.4.5 P04, EMC Documentum eRoom version before 7.5.0 P01 includes an unverified password change vulnerability that could potentially be exploited by malicious users to ...
Emc Documentum Eroom 7.4.5Emc Documentum Eroom 7.5.0Emc Documentum Eroom 7.4.4
NA
CVE-2014-2512
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Emc Documentum Eroom 7.4.4Emc Documentum Eroom 7.4.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-3400deserializationCVE-2024-21788CVE-2023-42433CVE-2024-21841CVE-2024-22095local file inclusionmemory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook