← Back

Emc

emc

413 CVEs • 186 products

Products (186)

Click to collapse
Toggle
Rsa Authentication Manager
rsa_authentication_manager
25 CVEs
Rsa Archer Egrc
rsa_archer_egrc
23 CVEs
Documentum Content Server
documentum_content_server
21 CVEs
Networker
networker
20 CVEs
Isilon Onefs
isilon_onefs
15 CVEs
Documentum Webtop
documentum_webtop
13 CVEs
Avamar Server
avamar_server
13 CVEs
Documentum Taskspace
documentum_taskspace
12 CVEs
Documentum D2
documentum_d2
12 CVEs
Rsa Identity Management And Governance
rsa_identity_management_and_governance
11 CVEs
Documentum Administrator
documentum_administrator
10 CVEs
Avamar
avamar
10 CVEs
Rsa Adaptive Authentication On Premise
rsa_adaptive_authentication_on-premise
10 CVEs
Documentum Wdk
documentum_wdk
10 CVEs
Vipr Srm
vipr_srm
10 CVEs
Data Protection Advisor
data_protection_advisor
9 CVEs
Secure Remote Services
secure_remote_services
8 CVEs
Recoverpoint For Virtual Machines
recoverpoint_for_virtual_machines
8 CVEs
Rsa Identity Governance And Lifecycle
rsa_identity_governance_and_lifecycle
8 CVEs
Legato Networker
legato_networker
7 CVEs
Documentum Eroom
documentum_eroom
7 CVEs
Rsa Archer Smartsuite
rsa_archer_smartsuite
7 CVEs
Recoverpoint
recoverpoint
7 CVEs
Smarts Network Configuration Manager
smarts_network_configuration_manager
6 CVEs
Documentum Digital Asset Manager
documentum_digital_asset_manager
6 CVEs
Document Sciences Xpression
document_sciences_xpression
6 CVEs
Vplex Geosynchrony
vplex_geosynchrony
6 CVEs
Replication Manager
replication_manager
5 CVEs
Documentum Capital Projects
documentum_capital_projects
5 CVEs
Documentum Web Publisher
documentum_web_publisher
5 CVEs
Watch4net
watch4net
5 CVEs
Rsa Data Loss Prevention
rsa_data_loss_prevention
5 CVEs
Appsync
appsync
5 CVEs
Rsa Certificate Manager
rsa_certificate_manager
5 CVEs
Scaleio
scaleio
5 CVEs
Replistor
replistor
4 CVEs
Autostart
autostart
4 CVEs
Rsa Authentication Agent
rsa_authentication_agent
4 CVEs
Alphastor
alphastor
4 CVEs
Documentum Records Manager
documentum_records_manager
4 CVEs
Avamar Server Virtual Edition
avamar_server_virtual_edition
4 CVEs
Rsa Security Analytics
rsa_security_analytics
4 CVEs
Sourceone Email Supervisor
sourceone_email_supervisor
4 CVEs
Rsa Security Sitekey
rsa_security_sitekey
3 CVEs
Diskxtender
diskxtender
3 CVEs
Sourceone Email Management
sourceone_email_management
3 CVEs
Cloud Tiering Appliance
cloud_tiering_appliance
3 CVEs
Networker Module For Microsoft Applications
networker_module_for_microsoft_applications
3 CVEs
Rsa Data Protection Manager Appliance
rsa_data_protection_manager_appliance
3 CVEs
Rsa Bsafe Ssl J
rsa_bsafe_ssl-j
3 CVEs
Rsa Registration Manager
rsa_registration_manager
3 CVEs
Unisphere
unisphere
3 CVEs
Rsa Archer Grc
rsa_archer_grc
3 CVEs
Documentum Xcp
documentum_xcp
3 CVEs
Solutions Enabler
solutions_enabler
3 CVEs
Vnx2 Firmware
vnx2_firmware
3 CVEs
Vnx1 Firmware
vnx1_firmware
3 CVEs
Integrated Data Protection Appliance
integrated_data_protection_appliance
3 CVEs
Eroom
eroom
2 CVEs
Navisphere Manager
navisphere_manager
2 CVEs
Retrospect
retrospect
2 CVEs
Vmware
vmware
2 CVEs
Control Center
control_center
2 CVEs
Networker Module
networker_module
2 CVEs
Captiva Einput
captiva_einput
2 CVEs
Documentum Information Rights Management
documentum_information_rights_management
2 CVEs
It Operations Intelligence
it_operations_intelligence
2 CVEs
Rsa Netwitness Informer
rsa_netwitness_informer
2 CVEs
Atmos
atmos
2 CVEs
Connectrix Manager
connectrix_manager
2 CVEs
Documentum Foundation Services
documentum_foundation_services
2 CVEs
Cloud Tiering Appliance Software
cloud_tiering_appliance_software
2 CVEs
Rsa Netwitness
rsa_netwitness
2 CVEs
Digital Assets Manager
digital_assets_manager
2 CVEs
Engineering Plant Facilities Management Solution For Documentum
engineering_plant_facilities_management_solution_for_documentum
2 CVEs
Task Space
task_space
2 CVEs
Web Publishers
web_publishers
2 CVEs
Isilon Insightiq
isilon_insightiq
2 CVEs
Powerpath Virtual Appliance
powerpath_virtual_appliance
2 CVEs
Data Domain Os
data_domain_os
2 CVEs
Avamar Data Store
avamar_data_store
2 CVEs
Esrs Policy Manager
esrs_policy_manager
2 CVEs
Archer Grc Platform
archer_grc_platform
2 CVEs
Rsa Archer
rsa_archer
2 CVEs
Rsa Bsafe Crypto C
rsa_bsafe_crypto-c
2 CVEs
Retrospect Client
retrospect_client
1 CVE
Vmware Server
vmware_server
1 CVE
Dantz Retrospect Backup Server
dantz_retrospect_backup_server
1 CVE
Centera Universal Access
centera_universal_access
1 CVE
Networker Client
networker_client
1 CVE
Networker Powersnap
networker_powersnap
1 CVE
Networker Server
networker_server
1 CVE
Networker Storage Node
networker_storage_node
1 CVE
Vmware Player
vmware_player
1 CVE
Captiva Pixtools Distributed Imaging
captiva_pixtools_distributed_imaging
1 CVE
Documentum Applicationxtender
documentum_applicationxtender
1 CVE
Documentum Applicationxtender Workflow Manager
documentum_applicationxtender_workflow_manager
1 CVE
Homebase Server
homebase_server
1 CVE
Rsa Key Manager Client
rsa_key_manager_client
1 CVE
Disk Library
disk_library
1 CVE

CVEs (413)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-2521
1Emc
1Documentum Content Server
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
6.3 MEDIUM· v2
EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07 allows remote authenticated users to read sensitive object metadata via an RPC command.
CVE-2014-2520
1Emc
1Documentum Content Server
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
6.3 MEDIUM· v2
EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07, when Oracle Database is used, does not properly restrict DQL hints, which allows remote authenticated users to conduct DQL injection attacks and re...Show more
EMC Documentum Content Server before 6.7 SP2 P16 and 7.x before 7.1 P07, when Oracle Database is used, does not properly restrict DQL hints, which allows remote authenticated users to conduct DQL injection attacks and read sensitive database content via a crafted request.Show less
CVE-2014-2518
1Emc
9Digital Assets Manager
Documentum AdministratorDocumentum Capital Projects+6 more
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Documentum WDK before 6.7SP1 P28 and 6.7SP2 before P15 allow remote attackers to hijack the authentication of arbitrary users.
CVE-2014-2517
1Emc
1Rsa Archer Egrc
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
6.5 MEDIUM· v2
Unspecified vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to gain privileges via unknown vectors.
CVE-2014-2515
1Emc
1Documentum D2
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
8.5 HIGH· v2
EMC Documentum D2 3.1 before P24, 3.1SP1 before P02, 4.0 before P11, 4.1 before P16, and 4.2 before P05 does not properly restrict tickets provided by D2GetAdminTicketMethod and D2RefreshCacheMethod, which allows remote...Show more
EMC Documentum D2 3.1 before P24, 3.1SP1 before P02, 4.0 before P11, 4.1 before P16, and 4.2 before P05 does not properly restrict tickets provided by D2GetAdminTicketMethod and D2RefreshCacheMethod, which allows remote authenticated users to gain privileges via a request for a superuser ticket.Show less
CVE-2014-2511
1Emc
8Digital Assets Manager
Documentum AdministratorDocumentum Capital Projects+5 more
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1) startat or (2) entryId para...Show more
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum WebTop before 6.7 SP1 P28 and 6.7 SP2 before P14 allow remote attackers to inject arbitrary web script or HTML via the (1) startat or (2) entryId parameter.Show less
CVE-2014-2505
1Emc
1Rsa Archer Egrc
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
5.4 MEDIUM· v2
EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to trigger the download of arbitrary code, and consequently change the product's functionality, via unspecified vectors.
CVE-2014-0641
1Emc
1Rsa Archer Egrc
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Cross-site request forgery (CSRF) vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to hijack the authentication of arbitrary users.
CVE-2014-0640
1Emc
1Rsa Archer Egrc
May 6, 2026
Aug 20, 2014
N/A· v4
N/A· v3
4.0 MEDIUM· v2
EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to bypass intended restrictions on resource access via unspecified vectors.
CVE-2014-2519
1Emc
1Recoverpoint Appliance
May 6, 2026
Jul 19, 2014
N/A· v4
N/A· v3
5.8 MEDIUM· v2
The default configuration of EMC RecoverPoint Appliance (RPA) 4.1 before 4.1.0.1 does not enable a firewall, which allows remote attackers to obtain potentially sensitive information about open ports, or cause a denial o...Show more
The default configuration of EMC RecoverPoint Appliance (RPA) 4.1 before 4.1.0.1 does not enable a firewall, which allows remote attackers to obtain potentially sensitive information about open ports, or cause a denial of service, by sending packets to many ports.Show less
CVE-2014-2514
1Emc
1Documentum Content Server
May 6, 2026
Jul 8, 2014
N/A· v4
N/A· v3
8.2 HIGH· v2
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P15, 7.0 before P15, and 7.1 before P06 does not properly check authorization and does not properly restrict object types, which allows remote authenticate...Show more
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P15, 7.0 before P15, and 7.1 before P06 does not properly check authorization and does not properly restrict object types, which allows remote authenticated users to run save RPC commands with super-user privileges, and consequently execute arbitrary code, via unspecified vectors.Show less
CVE-2014-2513
1Emc
1Documentum Content Server
May 6, 2026
Jul 8, 2014
N/A· v4
N/A· v3
8.2 HIGH· v2
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P15, 7.0 before P15, and 7.1 before P06 does not properly check authorization after creation of an object, which allows remote authenticated users to execu...Show more
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P15, 7.0 before P15, and 7.1 before P06 does not properly check authorization after creation of an object, which allows remote authenticated users to execute arbitrary code with super-user privileges via a custom script.Show less
CVE-2014-2510
1Emc
4Centerstage
Documentum Foundation ServicesMy Documentum For Desktop+1 more
May 6, 2026
Jul 8, 2014
N/A· v4
N/A· v3
6.8 MEDIUM· v2
The JAXB XML parser in EMC Documentum Foundation Services (DFS) 6.6 before P39, 6.7 SP1 before P28, and 6.7 SP2 before P15, as used in My Documentum for Desktop, My Documentum for Microsoft Outlook, and CenterStage, allo...Show more
The JAXB XML parser in EMC Documentum Foundation Services (DFS) 6.6 before P39, 6.7 SP1 before P28, and 6.7 SP2 before P15, as used in My Documentum for Desktop, My Documentum for Microsoft Outlook, and CenterStage, allows remote authenticated users to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.Show less
CVE-2014-2512
1Emc
1Documentum Eroom
May 6, 2026
Jul 1, 2014
N/A· v4
N/A· v3
3.5 LOW· v2
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-2509
1Emc
1Smarts Network Configuration Manager
May 6, 2026
Jul 1, 2014
N/A· v4
N/A· v3
5.4 MEDIUM· v2
Session fixation vulnerability in the Report Advisor (RA) component in EMC Network Configuration Manager (NCM) before 9.3 allows remote attackers to hijack web sessions via a session cookie.
CVE-2013-6078
1Emc
2Rsa Bsafe Toolkits
Rsa Data Protection Manager
May 6, 2026
Jun 17, 2014
N/A· v4
N/A· v3
5.8 MEDIUM· v2
The default configuration of EMC RSA BSAFE Toolkits and RSA Data Protection Manager (DPM) 20130918 uses the Dual Elliptic Curve Deterministic Random Bit Generation (Dual_EC_DRBG) algorithm, which makes it easier for cont...Show more
The default configuration of EMC RSA BSAFE Toolkits and RSA Data Protection Manager (DPM) 20130918 uses the Dual Elliptic Curve Deterministic Random Bit Generation (Dual_EC_DRBG) algorithm, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging unspecified "security concerns," aka the ESA-2013-068 issue. NOTE: this issue has been SPLIT from CVE-2007-6755 because the vendor announcement did not state a specific technical rationale for a change in the algorithm; thus, CVE cannot reach a conclusion that a CVE-2007-6755 concern was the reason, or one of the reasons, for this change.Show less
CVE-2014-2508
1Emc
1Documentum Content Server
May 6, 2026
Jun 8, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended...Show more
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on database actions via vectors involving DQL hints.Show less
CVE-2014-2507
1Emc
1Documentum Content Server
May 6, 2026
Jun 8, 2014
N/A· v4
N/A· v3
8.5 HIGH· v2
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to unspecifie...Show more
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to execute arbitrary commands via shell metacharacters in arguments to unspecified methods.Show less
CVE-2014-2506
1Emc
1Documentum Content Server
May 6, 2026
Jun 8, 2014
N/A· v4
N/A· v3
8.5 HIGH· v2
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to obtain super-user privileges for system-object creation, and bypass intended r...Show more
EMC Documentum Content Server before 6.7 SP1 P28, 6.7 SP2 before P14, 7.0 before P15, and 7.1 before P05 allows remote authenticated users to obtain super-user privileges for system-object creation, and bypass intended restrictions on data access and server actions, via unspecified vectors.Show less
CVE-2014-2503
1Emc
1Documentum Digital Asset Manager
May 6, 2026
Jun 6, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
The thumbnail proxy server in EMC Documentum Digital Asset Manager (DAM) 6.5 SP3, 6.5 SP4, 6.5 SP5, and 6.5 SP6 before P13 allows remote attackers to conduct Documentum Query Language (DQL) injection attacks and bypass i...Show more
The thumbnail proxy server in EMC Documentum Digital Asset Manager (DAM) 6.5 SP3, 6.5 SP4, 6.5 SP5, and 6.5 SP6 before P13 allows remote attackers to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on querying objects via a crafted parameter in a query string.Show less