Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The D2DownloadService.getDownloadUrls service method in EMC Documentum D2 4.1 and 4.2 before 4.2 P16 and 4.5 before P03 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended read-access restrictions via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC Documentum D2 输入验证漏洞
Vulnerability Description
EMC Documentum D2是美国易安信(EMC)公司的一套企业级内容管理系统。该系统通过创建、修改、跟踪等功能管理整个信息生命周期,其包括了多个扩展产品,如Documentum Web Publisher(Web内容管理)、Documentum Records Manager(记录管理)等。 EMC Documentum D2的D2DownloadService.getDownloadUrls服务方法中存在安全漏洞。远程攻击者可利用该漏洞实施Documentum Query Language(DQ
CVSS Information
N/A
Vulnerability Type
N/A