What is the severity of CVE-2014-2518?

CVE-2014-2518 is classified as a medium severity vulnerability due to its potential for cross-site request forgery attacks.

How do I fix CVE-2014-2518?

To mitigate CVE-2014-2518, it is recommended to upgrade EMC Documentum WDK to version 6.7SP1 P28 or later.

What types of attacks can CVE-2014-2518 facilitate?

CVE-2014-2518 could allow remote attackers to hijack the authentication of users, leading to unauthorized access.

Which EMC products are affected by CVE-2014-2518?

CVE-2014-2518 affects various EMC products including Documentum WDK, Documentum Administrator, and Documentum Records Manager among others.

What versions of EMC Documentum are vulnerable to CVE-2014-2518?

CVE-2014-2518 affects EMC Documentum WDK versions before 6.7SP1 P28 and 6.7SP2 before P15.

Vulnerability/
CVE-2014-2518

medium

6.8

CWE

352

20/8/2014

6/8/2024

CVE-2014-2518: CSRF

First published: Wed Aug 20 2014(Updated: )

Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
EMC Digital Assets Manager	=6.5
EMC Digital Assets Manager	=6.5-sp5
EMC Digital Assets Manager	=6.5-sp6
EMC Documentum Administrator	=6.7
EMC Documentum Administrator	=6.7-sp1
EMC Documentum Administrator	=6.7-sp2
EMC Documentum Administrator	=7.0
EMC Documentum Administrator	=7.1
EMC Documentum Capital Projects	=1.8
EMC Documentum Capital Projects	=1.9
EMC Documentum Records Manager	=6.7
EMC Documentum Records Manager	=6.7-sp1
EMC Documentum Records Manager	=6.7-sp2
EMC Documentum WDK	=6.7-sp1
EMC Documentum WDK	=6.7-sp2
EMC Documentum Webtop	=6.7
EMC Documentum Webtop	=6.7-sp1
EMC Documentum Webtop	=6.7-sp2
Emc Engineering Plant Facilities Management Solution For Documentum	=1.7-sp1
EMC Documentum TaskSpace	=6.7-sp1
EMC Documentum TaskSpace	=6.7-sp2
Emc Web Publishers	=6.5-sp6
Emc Web Publishers	=6.5-sp7

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-2518?
CVE-2014-2518 is classified as a medium severity vulnerability due to its potential for cross-site request forgery attacks.
How do I fix CVE-2014-2518?
To mitigate CVE-2014-2518, it is recommended to upgrade EMC Documentum WDK to version 6.7SP1 P28 or later.
What types of attacks can CVE-2014-2518 facilitate?
CVE-2014-2518 could allow remote attackers to hijack the authentication of users, leading to unauthorized access.
Which EMC products are affected by CVE-2014-2518?
CVE-2014-2518 affects various EMC products including Documentum WDK, Documentum Administrator, and Documentum Records Manager among others.
What versions of EMC Documentum are vulnerable to CVE-2014-2518?
CVE-2014-2518 affects EMC Documentum WDK versions before 6.7SP1 P28 and 6.7SP2 before P15.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/references
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/emc
canonical/emc digital assets manager
version/emc digital assets manager/6.5
version/emc digital assets manager/6.5-sp5
version/emc digital assets manager/6.5-sp6
canonical/emc documentum administrator
version/emc documentum administrator/6.7
version/emc documentum administrator/6.7-sp1
version/emc documentum administrator/6.7-sp2
version/emc documentum administrator/7.0
version/emc documentum administrator/7.1
canonical/emc documentum capital projects
version/emc documentum capital projects/1.8
version/emc documentum capital projects/1.9
canonical/emc documentum records manager
version/emc documentum records manager/6.7
version/emc documentum records manager/6.7-sp1
version/emc documentum records manager/6.7-sp2
canonical/emc documentum wdk
version/emc documentum wdk/6.7-sp1
version/emc documentum wdk/6.7-sp2
canonical/emc documentum webtop
version/emc documentum webtop/6.7
version/emc documentum webtop/6.7-sp1
version/emc documentum webtop/6.7-sp2
canonical/emc engineering plant facilities management solution for documentum
version/emc engineering plant facilities management solution for documentum/1.7-sp1
canonical/emc documentum taskspace
version/emc documentum taskspace/6.7-sp1
version/emc documentum taskspace/6.7-sp2
canonical/emc web publishers
version/emc web publishers/6.5-sp6
version/emc web publishers/6.5-sp7