Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EMC Documentum D2 3.1 before P20, 3.1 SP1 before P02, 4.0 before P10, 4.1 before P13, and 4.2 before P01 allows remote authenticated users to bypass intended access restrictions and execute arbitrary Documentum Query Language (DQL) queries by calling (1) a core method or (2) a D2FS web-service method.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC Documentum D2 权限许可和访问控制漏洞
Vulnerability Description
EMC Documentum D2是美国易安信(EMC)公司的一套企业级内容管理系统。该系统通过创建、修改、跟踪等功能管理整个信息生命周期,其包括了多个扩展产品,如Documentum Web Publisher(Web内容管理)、Documentum Records Manager(记录管理)等。 EMC Documentum D2中存在安全漏洞。远程攻击者可通过调用core或D2FS web-service方法利用该漏洞绕过既定的访问限制,执行任意Documentum Query Language (
CVSS Information
N/A
Vulnerability Type
N/A