Medium severity6.3NVD Advisory· Published Jun 23, 2016· Updated May 6, 2026

CVE-2016-0914

Description

EMC Documentum WebTop 6.8 before Patch 13 and 6.8.1 before Patch 02, Documentum Administrator 7.x before 7.2 Patch 13, Documentum Capital Projects 1.9 before Patch 23 and 1.10 before Patch 10, and Documentum TaskSpace 6.7 SP3 allow remote authenticated users to bypass intended access restrictions and execute arbitrary IAPI/IDQL commands via the IAPI/IDQL interface.

Affected products

EMC Corporation/Documentum Administrator3 versions
cpe:2.3:a:emc:documentum_administrator:7.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:emc:documentum_administrator:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:documentum_administrator:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:documentum_administrator:7.2:*:*:*:*:*:*:*
EMC Corporation/Documentum Capital Projects2 versions
cpe:2.3:a:emc:documentum_capital_projects:1.9:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:emc:documentum_capital_projects:1.9:*:*:*:*:*:*:*
- cpe:2.3:a:emc:documentum_capital_projects:1.10:*:*:*:*:*:*:*
EMC Corporation/Documentum Taskspace
cpe:2.3:a:emc:documentum_taskspace:6.7:sp3:*:*:*:*:*:*
EMC Corporation/Documentum Webtop2 versions
cpe:2.3:a:emc:documentum_webtop:6.8:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:emc:documentum_webtop:6.8:*:*:*:*:*:*:*
- cpe:2.3:a:emc:documentum_webtop:6.8.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/bugtraq/2016/Jun/92nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1036153nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.410
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000