CVE-2013-6177: Path Traversal
First published: Thu Nov 21 2013(Updated: )
Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allows remote authenticated users to read arbitrary files by leveraging xDashboard access.
Credit: security_alert@emc.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Emc Document Sciences Xpression | =4.1-sp1 | |
| Emc Document Sciences Xpression | =4.2 | |
| Emc Document Sciences Xpression | =4.5 | |
| Emc Document Sciences Xpression | =4.1-sp1 | |
| Emc Document Sciences Xpression | =4.2 | |
| Emc Document Sciences Xpression | =4.5 | |
| EMC Document Sciences xPression | =4.1-sp1 | |
| EMC Document Sciences xPression | =4.2 | |
| EMC Document Sciences xPression | =4.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/type
- agent/description
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/emc
- canonical/emc document sciences xpression
- version/emc document sciences xpression/4.1-sp1
- version/emc document sciences xpression/4.2
- version/emc document sciences xpression/4.5