Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-5586 | 1 Opentext | 1 Documentum D2 | 2025-04-20 | 7.5 HIGH | 9.8 CRITICAL |
|
OpenText Documentum D2 (formerly EMC Documentum D2) 4.x allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the BeanShell (bsh) and Apache Commons Collections (ACC) libraries.
|
|||||
| CVE-2018-7660 | 1 Opentext | 1 Documentum D2 | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Reflected Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via the servlet/Download _docbase or _username parameter.
|
|||||
| CVE-2018-7659 | 1 Opentext | 1 Documentum D2 | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file.
|
|||||