Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Administrator 7.2.0180.0055 allow remote authenticated users to list the contents of arbitrary directories, read arbitrary files, cause a denial of service, or, on Windows, obtain Documentum user hashes via a (1) crafted DTD, involving unspecified XML structures in a request to xda/com/documentum/ucf/server/transport/impl/GAIRConnector or crafted XML file in a MediaProfile file (2) import or (3) check in.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenText Documentum Administrator 安全漏洞
Vulnerability Description
OpenText Documentum Administrator是加拿大OpenText公司的一套基于Web用来执行Documentum系统管理任务的开发工具。 OpenText Documentum Administrator 7.2.0180.0055版本中存在XML外部实体注入漏洞。远程攻击者可利用该漏洞列出任意目录的内容,造成拒绝服务或获取Documentum用户散列。
CVSS Information
N/A
Vulnerability Type
N/A