Skip to main content

Task Space

2 CVEs product

Monthly

CVE-2014-2518 MEDIUM This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Digital Assets Manager Documentum Administrator Documentum Capital Projects Documentum Records Manager +5
NVD
CVSS 2.0
6.8
EPSS
0.2%
CVE-2014-2511 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Digital Assets Manager Documentum Administrator Documentum Capital Projects Documentum Webtop +4
NVD
CVSS 2.0
4.3
EPSS
0.3%
EPSS 0% CVSS 6.8
MEDIUM This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Digital Assets Manager Documentum Administrator +7
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Digital Assets Manager Documentum Administrator +6
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy