CVE-2012-0396

EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or read object metadata, via a search.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
dellCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
VendorProductVersion
emcdocumentum_xplore
1.0
emcdocumentum_xplore
1.1
emcdocumentum_xplore
1.1:p01
emcdocumentum_xplore
1.1:p03
emcdocumentum_xplore
1.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html
http://secunia.com/advisories/47920
http://securitytracker.com/id?1026639
http://www.securityfocus.com/bid/51863
https://exchange.xforce.ibmcloud.com/vulnerabilities/72994
http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html
http://secunia.com/advisories/47920
http://securitytracker.com/id?1026639
http://www.securityfocus.com/bid/51863
https://exchange.xforce.ibmcloud.com/vulnerabilities/72994