cbcvebase.

Opentext Documentum Content Server vulnerabilities

6 known vulnerabilities affecting opentext/documentum_content_server.

Total CVEs
6
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2017-15012P2HIGHCVSS 8.8PoC≤ 7.32017-10-13
CVE-2017-15012 [HIGH] CWE-20 CVE-2017-15012: OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 does not pro OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 does not properly validate the input of the PUT_FILE RPC-command, which allows any authenticated user to hijack an arbitrary file from the Content Server filesystem; because some files on the Content Server filesystem are security-sensitive, this leads to privilege
nvd
CVE-2017-15276P2HIGHCVSS 8.8PoC≤ 7.32017-10-13
CVE-2017-15276 [HIGH] CWE-22 CVE-2017-15276: OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the following design gap, which allows an authenticated user to gain superuser privileges: Content Server allows uploading content using batches (TAR archives). When unpacking TAR archives, Content Server fails to verify the contents of an archive, which ca
nvd
CVE-2017-15013P3HIGHCVSS 8.8PoC≤ 7.32017-10-13
CVE-2017-15013 [HIGH] CWE-269 CVE-2017-15013: OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the following design gap, which allows an authenticated user to gain superuser privileges: Content Server stores information about uploaded files in dmr_content objects, which are queryable and "editable" (before release 7.2P02, any authenticated user was
nvd
CVE-2017-15014P4MEDIUMCVSS 4.3PoC≤ 7.32017-10-13
CVE-2017-15014 [MEDIUM] CWE-269 CVE-2017-15014: OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the OpenText Documentum Content Server (formerly EMC Documentum Content Server) through 7.3 contains the following design gap, which allows authenticated users to download arbitrary content files regardless of the attacker's repository permissions: When an authenticated user uploads content to the repository, he performs the following steps: (1) calls t
nvd
CVE-2017-5585P3HIGHCVSS 8.8v7.32017-02-22
CVE-2017-5585 [HIGH] CVE-2017-5585: OpenText Documentum Content Server (formerly EMC Documentum Content Server) 7.3, when PostgreSQL Dat OpenText Documentum Content Server (formerly EMC Documentum Content Server) 7.3, when PostgreSQL Database is used and return_top_results_row_based config option is false, does not properly restrict DQL hints, which allows remote authenticated users to conduct DQL injection attacks and execute arbitrary DML or DDL commands via a crafted request. NOTE: this vulne
nvd
CVE-2023-31871P3HIGHCVSS 7.8fixed in 23.22023-05-18
CVE-2023-31871 [HIGH] CWE-732 CVE-2023-31871: OpenText Documentum Content Server before 23.2 has a flaw that allows for privilege escalation from OpenText Documentum Content Server before 23.2 has a flaw that allows for privilege escalation from a non-privileged Documentum user to root. The software comes prepackaged with a root owned SUID binary dm_secure_writer. The binary has security controls in place preventing creation of a file in a non-owned directory, or as the root user. However, these
nvd
Opentext Documentum Content Server vulnerabilities | cvebase