CVE-2015-4529

EUVD-2015-4549
Open redirect vulnerability in EMC Documentum WebTop before 6.8P02, Documentum Administrator before 7.2P01, Documentum Digital Assets Manager through 6.5SP6, Documentum Web Publishers through 6.5SP7, and Documentum Task Space through 6.7SP2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted URL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 48%
Affected Products (NVD)
VendorProductVersion
emcdocumentum_administrator
𝑥
≤ 7.2
emcdocumentum_digital_asset_manager
𝑥
≤ 6.5
emcdocumentum_taskspace
𝑥
≤ 6.7
emcdocumentum_web_publisher
𝑥
≤ 6.5
emcdocumentum_webtop
𝑥
≤ 6.8
𝑥
= Vulnerable software versions
References
http://seclists.org/bugtraq/2015/Jul/81
http://www.securityfocus.com/bid/75930
http://www.securitytracker.com/id/1032965
http://seclists.org/bugtraq/2015/Jul/81
http://www.securityfocus.com/bid/75930
http://www.securitytracker.com/id/1032965