VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Aug 20, 2014· Updated May 6, 2026

CVE-2014-2518

CVE-2014-2518

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users.

Affected products

23
  • EMC Corporation/Digital Assets Manager3 versions
    cpe:2.3:a:emc:digital_assets_manager:6.5:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:digital_assets_manager:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:digital_assets_manager:6.5:sp5:*:*:*:*:*:*
    • cpe:2.3:a:emc:digital_assets_manager:6.5:sp6:*:*:*:*:*:*
  • EMC Corporation/Documentum Administrator5 versions
    cpe:2.3:a:emc:documentum_administrator:6.7:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:emc:documentum_administrator:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:6.7:sp2:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_administrator:7.1:*:*:*:*:*:*:*
  • EMC Corporation/Documentum Capital Projects2 versions
    cpe:2.3:a:emc:documentum_capital_projects:1.8:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:documentum_capital_projects:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_capital_projects:1.9:*:*:*:*:*:*:*
  • EMC Corporation/Documentum Records Manager3 versions
    cpe:2.3:a:emc:documentum_records_manager:6.7:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_records_manager:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_records_manager:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_records_manager:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Documentum Wdk2 versions
    cpe:2.3:a:emc:documentum_wdk:6.7:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:documentum_wdk:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_wdk:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Documentum Webtop3 versions
    cpe:2.3:a:emc:documentum_webtop:6.7:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:emc:documentum_webtop:6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_webtop:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:documentum_webtop:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Engineering Plant Facilities Management Solution For Documentum
    cpe:2.3:a:emc:engineering_plant_facilities_management_solution_for_documentum:1.7:sp1:*:*:*:*:*:*
  • EMC Corporation/Task Space2 versions
    cpe:2.3:a:emc:task_space:6.7:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:task_space:6.7:sp1:*:*:*:*:*:*
    • cpe:2.3:a:emc:task_space:6.7:sp2:*:*:*:*:*:*
  • EMC Corporation/Web Publishers2 versions
    cpe:2.3:a:emc:web_publishers:6.5:sp6:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:emc:web_publishers:6.5:sp6:*:*:*:*:*:*
    • cpe:2.3:a:emc:web_publishers:6.5:sp7:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.