← Back to CVEs
CVE-2015-0551
N/ADescription
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop 6.7SP1 before P31, 6.7SP2 before P23, and 6.8 before P01; Documentum Administrator 6.7SP1 before P31, 6.7SP2 before P23, 7.0 before P18, 7.1 before P15, and 7.2 before P01; Documentum Digital Assets Manager 6.5SP6 before P25; Documentum Web Publishers 6.5 SP7 before P25; and Documentum Task Space 6.7SP1 before P31 and 6.7SP2 before P23 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE Details
CVSS v3.1 ScoreN/A
Published7/4/2015
Last Modified4/12/2025
Sourcenvd
Honeypot Sightings0
Affected Products
emc:documentum_administratoremc:documentum_digital_asset_manageremc:documentum_taskspaceemc:documentum_web_publisheremc:documentum_webtop
Weaknesses (CWE)
CWE-79
References
http://seclists.org/bugtraq/2015/Jul/9(security_alert@emc.com)
http://www.securitytracker.com/id/1032770(security_alert@emc.com)
http://seclists.org/bugtraq/2015/Jul/9(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1032770(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.