CVE-2014-0629

Published Mar 6, 2014

Last updated 3 months ago

Overview

Description
EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle the interaction between the dm_world group and the dm_superusers_dynamic group, which allows remote authenticated users to obtain sensitive information and gain privileges in opportunistic circumstances by leveraging an incorrect group-addition implementation.
Source
security_alert@emc.com
NVD status
Modified

Risk scores

CVSS 2.0

Type
Primary
Base score
8.5
Impact score
10
Exploitability score
6.8
Vector string
AV:N/AC:M/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov
CWE-264

Social media

Hype score
Not currently trending

Configurations