This week EMC published a new security advisory. This time the advisory is related to Documentum xPlore.
Affected products:
- EMC Documentum xPlore 1.0 (all patch versions)
- EMC Documentum xPlore 1.1 (all patch versions prior to 1.1 P07)
- EMC Documentum xPlore 1.2 (all patch versions)
EMC Documentum xPlore contains an information disclosure vulnerability that may allow unauthorized users, under certain circumstances, to see certain information on protected objects in an xPlore search result. They will not, however, be allowed to view the objects themselves, or any associated content.Resolution: The following EMC Documentum xPlore products contain resolutions to this issue:
Under specific circumstances, an authenticated user who does not have BROWSE permission on the object may be able to see the existence of or certain metadata on that object in a search result. However, the user will not be able to open the object or to look at property details for the object.
- EMC Documentum xPlore xPlore 1.1 P07
- EMC Documentum xPlore 1.2 Hotfix for SRCH-7949
Comments (0)
Post a Comment