Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-4532

EPSS 2.15% · P84
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-4532

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02 does not properly check authorization and does not properly restrict object types, which allows remote authenticated users to run save RPC commands with super-user privileges, and consequently execute arbitrary code, via unspecified vectors. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2514.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
EMC Documentum Content Server 权限许可和访问控制漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
EMC Documentum Content Server是美国易安信(EMC)公司的一套内容管理服务系统。该系统主要用于管理Documentum内容存储库,可对文档进行创建、修改和跟踪等操作。 EMC Documentum Content Server中存在安全漏洞,该漏洞源于程序没有正确检查授权并且限制对象类型。远程攻击者可利用该漏洞以超级用户权限运行保存的RPC命令,并执行任意代码。以下版本受到影响:EMC Documentum Content Server before 6.7SP1版本,6.7S
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2015-4532

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2015-4532

Please Login to view more intelligence information

Same Patch Batch · n/a · 2015-08-20 · 29 CVEs total

CVE-2015-4319Cisco TelePresence Video Communication Server Expressway 安全漏洞
CVE-2015-6530OpenText Secure MFT 跨站脚本漏洞
CVE-2015-6529phpipam 跨站脚本漏洞
CVE-2015-6528Coppermine Photo Gallery 跨站脚本漏洞
CVE-2015-3219OpenStack Horizon 跨站脚本漏洞
CVE-2015-4318Cisco TelePresence Video Communication Server Expressway 拒绝服务漏洞
CVE-2015-4536EMC Documentum Content Server 信息泄露漏洞
CVE-2015-4535EMC Documentum Content Server Java Method Server 权限许可和访问控制漏洞
CVE-2015-4534EMC Documentum Content Server Java Method Server 输入验证漏洞
CVE-2015-4533EMC Documentum Content Server 权限许可和访问控制漏洞
CVE-2015-4531EMC Documentum Content Server 权限许可和访问控制漏洞
CVE-2015-4530多款EMC Documentum产品跨站请求伪造漏洞
CVE-2015-4329Cisco TelePresence Video Communication Server Expressway 输入验证漏洞
CVE-2015-4321Cisco Adaptive Security Appliance Software Unicast Reverse Path Forwarding 安全漏洞
CVE-2015-4314Cisco TelePresence Video Communication Server Expressway System Snapshot 安全漏洞
CVE-2015-4316Cisco TelePresence Video Communication Server Expressway 安全漏洞
CVE-2015-4303Cisco TelePresence Video Communication Server 权限许可和访问控制漏洞
CVE-2015-0542EMC RSA Archer GRC 跨站请求伪造漏洞
CVE-2015-0537多款EMC RSA产品数字错误漏洞
CVE-2015-0536EMC RSA BSAFE Micro Edition Suite和RSA BSAFE SSL-C 数字错误漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2015-4532

No comments yet

Leave a comment