CVE-2014-2512
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0030 (0.3%)
Percentil: 52.9%
EPSS: 2026-05-06
Afecta
emc:documentum_eroomDescripción técnica
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Publicada: 1/7/2014, 0:55:05
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://archives.neohapsis.com/archives/bugtraq/2014-06/0176.html
- http://packetstormsecurity.com/files/127309/EMC-Documentum-eRoom-Cross-Site-Scripting.html
- http://packetstormsecurity.com/files/127321/EMC-Documentum-eRoom-Stored-Cross-Site-Scripting.html
- http://seclists.org/fulldisclosure/2014/Jul/0
- http://secunia.com/advisories/59419
- http://www.securityfocus.com/archive/1/532608/100/0/threaded
- http://www.securitytracker.com/id/1030493
- http://archives.neohapsis.com/archives/bugtraq/2014-06/0176.html