|
280171
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P15, 7.0 before P15, and 7.1 before P06 does not properly check authorization and does not properly restrict object types, which allow…
|
CWE-20
Improper Input Validation
|
CVE-2014-2514
|
2024-11-21 11:06 |
2014-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280172
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P15, 7.0 before P15, and 7.1 before P06 does not properly check authorization after creation of an object, which allows remote authent…
|
CWE-20
Improper Input Validation
|
CVE-2014-2513
|
2024-11-21 11:06 |
2014-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280173
|
- |
|
emc
|
centerstage
documentum_foundation_services
my_documentum_for_desktop
my_documentum_for_microsoft_outlook
|
The JAXB XML parser in EMC Documentum Foundation Services (DFS) 6.6 before P39, 6.7 SP1 before P28, and 6.7 SP2 before P15, as used in My Documentum for Desktop, My Documentum for Microsoft Outlook, …
|
CWE-200
Information Exposure
|
CVE-2014-2510
|
2024-11-21 11:06 |
2014-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280174
|
- |
|
hp
|
universal_configuration_management_database
|
Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2104.
|
NVD-CWE-noinfo
|
CVE-2014-2617
|
2024-11-21 11:06 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280175
|
- |
|
hp
|
universal_configuration_management_database
|
Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2091.
|
NVD-CWE-noinfo
|
CVE-2014-2616
|
2024-11-21 11:06 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280176
|
- |
|
hp
|
universal_configuration_management_database
|
Unspecified vulnerability in HP Universal CMDB 10.01 and 10.10 allows remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors, aka ZDI-CAN-2083.
|
NVD-CWE-noinfo
|
CVE-2014-2615
|
2024-11-21 11:06 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280177
|
- |
|
hp
|
sitescope
|
Unspecified vulnerability in HP SiteScope 11.1x through 11.13 and 11.2x through 11.24 allows remote attackers to bypass authentication via unknown vectors, aka ZDI-CAN-2140.
|
CWE-287
NVD-CWE-noinfo
Improper Authentication
|
CVE-2014-2614
|
2024-11-21 11:06 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280178
|
- |
|
emc
|
documentum_eroom
|
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecif…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2512
|
2024-11-21 11:06 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280179
|
- |
|
emc
|
smarts_network_configuration_manager
|
Session fixation vulnerability in the Report Advisor (RA) component in EMC Network Configuration Manager (NCM) before 9.3 allows remote attackers to hijack web sessions via a session cookie.
|
NVD-CWE-Other
|
CVE-2014-2509
|
2024-11-21 11:06 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280180
|
- |
|
hp
|
release_control
|
Unspecified vulnerability in HP Release Control 9.x before 9.13 p3 and 9.2x before RC 9.21.0003 p1 on Windows and 9.2x before RC 9.21.0002 p1 on Linux allows remote authenticated users to gain privil…
|
NVD-CWE-noinfo
|
CVE-2014-2613
|
2024-11-21 11:06 |
2014-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
