cbcvebase.

Opentext Documentum D2 vulnerabilities

4 known vulnerabilities affecting opentext/documentum_d2.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2017-5586P1CRITICALCVSS 9.8PoCv4.0v4.1+5 more2017-02-22
CVE-2017-5586 [CRITICAL] CWE-20 CVE-2017-5586: OpenText Documentum D2 (formerly EMC Documentum D2) 4.x allows remote attackers to execute arbitrary OpenText Documentum D2 (formerly EMC Documentum D2) 4.x allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the BeanShell (bsh) and Apache Commons Collections (ACC) libraries.
nvd
CVE-2023-32264P4MEDIUMCVSS 5.8≥ 16.5.1, ≤ CE 23.2 2024-03-08
CVE-2023-32264 [MEDIUM] CWE-1385 CVE-2023-32264: CWE-1385 vulnerability in OpenText Documentum D2 affecting versions16.5.1 to CE 23.2. The vulnerabil CWE-1385 vulnerability in OpenText Documentum D2 affecting versions16.5.1 to CE 23.2. The vulnerability could allow upload arbitrary code and execute it on the client's computer.
nvd
CVE-2018-7659P4MEDIUMCVSS 5.4v4.6.00302018-04-11
CVE-2018-7659 [MEDIUM] CWE-79 CVE-2018-7659: In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability co In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file.
nvd
CVE-2018-7660P4MEDIUMCVSS 5.4v4.6.00302018-04-11
CVE-2018-7660 [MEDIUM] CWE-79 CVE-2018-7660: In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Reflected Cross-Site Scripting Vulnerability In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Reflected Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via the servlet/Download _docbase or _username parameter.
nvd
Opentext Documentum D2 vulnerabilities | cvebase