Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Lockbox in EMC Documentum D2 before 4.5 uses a hardcoded passphrase when a server lacks a D2.Lockbox file, which makes it easier for remote authenticated users to decrypt admin tickets by locating this passphrase in a decompiled D2 JAR archive.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC Documentum D2 Lockbox组件信息泄露漏洞
Vulnerability Description
EMC Documentum D2是美国易安信(EMC)公司的一套企业级内容管理系统。该系统通过创建、修改、跟踪等功能管理整个信息生命周期,其包括了多个扩展产品,如Documentum Web Publisher(Web内容管理)、Documentum Records Manager(记录管理)等。Lockbox是其中的一个加密解密库组件。 EMC Documentum D2 4.5之前版本的Lockbox组件中存在安全漏洞,该漏洞源于当服务器中缺少D2.Lockbox文件时,程序使用硬编码的密码。远程攻
CVSS Information
N/A
Vulnerability Type
N/A