CVE-2012-0396

EUVD-2012-0428
EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or read object metadata, via a search.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Affected Products (NVD)
VendorProductVersion
emcdocumentum_xplore
1.0
emcdocumentum_xplore
1.1
emcdocumentum_xplore
1.1:p01
emcdocumentum_xplore
1.1:p03
emcdocumentum_xplore
1.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html
http://secunia.com/advisories/47920
http://securitytracker.com/id?1026639
http://www.securityfocus.com/bid/51863
https://exchange.xforce.ibmcloud.com/vulnerabilities/72994
http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html
http://secunia.com/advisories/47920
http://securitytracker.com/id?1026639
http://www.securityfocus.com/bid/51863
https://exchange.xforce.ibmcloud.com/vulnerabilities/72994