VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published May 25, 2015· Updated May 6, 2026

CVE-2015-0540

CVE-2015-0540

Description

SQL injection vulnerability in the xAdmin interface in EMC Document Sciences xPression 4.2 before P44 and 4.5 SP1 before P03 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Affected products

5
  • EMC Corporation/Document Sciences Xpression5 versions
    cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:documentum:*:*:*+ 4 more
    • cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:documentum:*:*:*
    • cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:enterprise:-:-:compuset_engine
    • cpe:2.3:a:emc:document_sciences_xpression:4.2:-:-:*:enterprise:-:-:publish_engine
    • cpe:2.3:a:emc:document_sciences_xpression:4.5:sp1:*:*:documentum:*:*:*
    • cpe:2.3:a:emc:document_sciences_xpression:4.5:sp1:*:*:enterprise:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.