VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Aug 20, 2014· Updated May 6, 2026

CVE-2014-2511

CVE-2014-2511

Description

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1) startat or (2) entryId parameter.

Affected products

24
  • EMC Corporation/Digital Assets Manager3 versions
    cpe:2.3:a:emc:digital_assets_manager:6.5:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:digital_assets_manager:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:digital_assets_manager:6.5:sp5:*:*:*:*:*:*
    • cpe:2.3:a:emc:digital_assets_manager:6.5:sp6:*:*:*:*:*:*
  • EMC Corporation/Documentum Administrator5 versions
    cpe:2.3:a:emc:documentum_administrator:6.7:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:emc:documentum_administrator:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:6.7:sp2:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:7.1:*:*:*:*:*:*:*
  • EMC Corporation/Documentum Capital Projects2 versions
    cpe:2.3:a:emc:documentum_capital_projects:1.8:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:documentum_capital_projects:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_capital_projects:1.9:*:*:*:*:*:*:*
  • EMC Corporation/Documentum Webtop3 versions
    cpe:2.3:a:emc:documentum_webtop:6.7:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_webtop:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_webtop:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_webtop:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Engineering Plant Facilities Management Solution For Documentum2 versions
    cpe:2.3:a:emc:engineering_plant_facilities_management_solution_for_documentum:1.7:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:engineering_plant_facilities_management_solution_for_documentum:1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:engineering_plant_facilities_management_solution_for_documentum:1.7:sp1:*:*:*:*:*:*
  • EMC Corporation/Records Client3 versions
    cpe:2.3:a:emc:records_client:6.7:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:records_client:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:records_client:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:records_client:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Task Space3 versions
    cpe:2.3:a:emc:task_space:6.7:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:task_space:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:task_space:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:task_space:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Web Publishers3 versions
    cpe:2.3:a:emc:web_publishers:6.5:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:web_publishers:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:web_publishers:6.5:sp6:*:*:*:*:*:*
    • cpe:2.3:a:emc:web_publishers:6.5:sp7:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.