NVD

Id
25957  
Name
CVE-2015-4535  
Description
Java Method Server (JMS) in EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02, when __debug_trace__ is configured, allows remote authenticated users to gain super-user privileges by leveraging the ability to read a log file containing a login ticket.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
8.5  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:P/I:P/A:C)  
Pub Date
2017-01-19  
Published
2015-08-20  
Modified Date
2016-11-28  
Seq
2015-4535  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
137256 25957 CVE-2015-4535 20150817 ESA-2015-131: EMC Documentum Content Server Multiple Vulnerabilities  View
137257 25957 CVE-2015-4535 76409  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
9019 JVNDB-2015-004339 EMC Documentum Content Server の Java Method Server におけるスーパーユーザ権限を取得される脆弱性 EMC Documentum Content Server の Java Method Server (JMS) には、__debug_trace__ が設定されている場合、スーパーユーザ権限を取得される脆弱性が存在します。 CVE-2015-4535 81760 CVE-2015-4535 25957 7.5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-004339.html 2015-08-17 2015-08-25 View