CVE-2014-0630 : EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 allows remote authenticated users to read arbitra

EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 allows remote authenticated users to read arbitrary files via a modified imaging-service URL.

Published 2014-03-06 11:55:05

Updated 2014-03-07 19:14:47

Source Dell

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2014-0630

Probability of exploitation activity in the next 30 days: 0.13%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 47 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-0630

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.0	MEDIUM	AV:N/AC:L/Au:S/C:P/I:N/A:N	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2014-0630

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-0630

http://seclists.org/bugtraq/2014/Mar/33

Bugtraq: ESA-2014-012: EMC Documentum TaskSpace Multiple Vulnerabilities

CVEs referencing this url

Products affected by CVE-2014-0630

EMC » Documentum Taskspace » Version: 6.7 Update SP1
cpe:2.3:a:emc:documentum_taskspace:6.7:sp1:*:*:*:*:*:*
Matching versions
EMC » Documentum Taskspace » Version: 6.7 Update SP2
cpe:2.3:a:emc:documentum_taskspace:6.7:sp2:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-0630

Exploit prediction scoring system (EPSS) score for CVE-2014-0630

CVSS scores for CVE-2014-0630

CWE ids for CVE-2014-0630

References for CVE-2014-0630

Products affected by CVE-2014-0630