Cross-site request forgery (CSRF) vulnerability in EMC Documentum WebTop prior to 6.8P01, Documentum Administrator up to and including 7.2, Documentum Digital Assets Manager up to and including 6.5SP6, Documentum Web Publishers up to and including 6.5SP7, and Documentum Task Space up to and including 6.7SP2 allows remote malicious users to hijack the authentication of arbitrary users. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2518.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc documentum web publisher |
||
emc documentum taskspace |
||
emc documentum webtop |
||
emc documentum digital asset manager |
||
emc documentum administrator |