← Back

Emc

emc

413 CVEs • 186 products

Products (186)

Click to collapse
Toggle
Rsa Authentication Manager
rsa_authentication_manager
25 CVEs
Rsa Archer Egrc
rsa_archer_egrc
23 CVEs
Documentum Content Server
documentum_content_server
21 CVEs
Networker
networker
20 CVEs
Isilon Onefs
isilon_onefs
15 CVEs
Documentum Webtop
documentum_webtop
13 CVEs
Avamar Server
avamar_server
13 CVEs
Documentum Taskspace
documentum_taskspace
12 CVEs
Documentum D2
documentum_d2
12 CVEs
Rsa Identity Management And Governance
rsa_identity_management_and_governance
11 CVEs
Documentum Administrator
documentum_administrator
10 CVEs
Avamar
avamar
10 CVEs
Rsa Adaptive Authentication On Premise
rsa_adaptive_authentication_on-premise
10 CVEs
Documentum Wdk
documentum_wdk
10 CVEs
Vipr Srm
vipr_srm
10 CVEs
Data Protection Advisor
data_protection_advisor
9 CVEs
Secure Remote Services
secure_remote_services
8 CVEs
Recoverpoint For Virtual Machines
recoverpoint_for_virtual_machines
8 CVEs
Rsa Identity Governance And Lifecycle
rsa_identity_governance_and_lifecycle
8 CVEs
Legato Networker
legato_networker
7 CVEs
Documentum Eroom
documentum_eroom
7 CVEs
Rsa Archer Smartsuite
rsa_archer_smartsuite
7 CVEs
Recoverpoint
recoverpoint
7 CVEs
Smarts Network Configuration Manager
smarts_network_configuration_manager
6 CVEs
Documentum Digital Asset Manager
documentum_digital_asset_manager
6 CVEs
Document Sciences Xpression
document_sciences_xpression
6 CVEs
Vplex Geosynchrony
vplex_geosynchrony
6 CVEs
Replication Manager
replication_manager
5 CVEs
Documentum Capital Projects
documentum_capital_projects
5 CVEs
Documentum Web Publisher
documentum_web_publisher
5 CVEs
Watch4net
watch4net
5 CVEs
Rsa Data Loss Prevention
rsa_data_loss_prevention
5 CVEs
Appsync
appsync
5 CVEs
Rsa Certificate Manager
rsa_certificate_manager
5 CVEs
Scaleio
scaleio
5 CVEs
Replistor
replistor
4 CVEs
Autostart
autostart
4 CVEs
Rsa Authentication Agent
rsa_authentication_agent
4 CVEs
Alphastor
alphastor
4 CVEs
Documentum Records Manager
documentum_records_manager
4 CVEs
Avamar Server Virtual Edition
avamar_server_virtual_edition
4 CVEs
Rsa Security Analytics
rsa_security_analytics
4 CVEs
Sourceone Email Supervisor
sourceone_email_supervisor
4 CVEs
Rsa Security Sitekey
rsa_security_sitekey
3 CVEs
Diskxtender
diskxtender
3 CVEs
Sourceone Email Management
sourceone_email_management
3 CVEs
Cloud Tiering Appliance
cloud_tiering_appliance
3 CVEs
Networker Module For Microsoft Applications
networker_module_for_microsoft_applications
3 CVEs
Rsa Data Protection Manager Appliance
rsa_data_protection_manager_appliance
3 CVEs
Rsa Bsafe Ssl J
rsa_bsafe_ssl-j
3 CVEs
Rsa Registration Manager
rsa_registration_manager
3 CVEs
Unisphere
unisphere
3 CVEs
Rsa Archer Grc
rsa_archer_grc
3 CVEs
Documentum Xcp
documentum_xcp
3 CVEs
Solutions Enabler
solutions_enabler
3 CVEs
Vnx2 Firmware
vnx2_firmware
3 CVEs
Vnx1 Firmware
vnx1_firmware
3 CVEs
Integrated Data Protection Appliance
integrated_data_protection_appliance
3 CVEs
Eroom
eroom
2 CVEs
Navisphere Manager
navisphere_manager
2 CVEs
Retrospect
retrospect
2 CVEs
Vmware
vmware
2 CVEs
Control Center
control_center
2 CVEs
Networker Module
networker_module
2 CVEs
Captiva Einput
captiva_einput
2 CVEs
Documentum Information Rights Management
documentum_information_rights_management
2 CVEs
It Operations Intelligence
it_operations_intelligence
2 CVEs
Rsa Netwitness Informer
rsa_netwitness_informer
2 CVEs
Atmos
atmos
2 CVEs
Connectrix Manager
connectrix_manager
2 CVEs
Documentum Foundation Services
documentum_foundation_services
2 CVEs
Cloud Tiering Appliance Software
cloud_tiering_appliance_software
2 CVEs
Rsa Netwitness
rsa_netwitness
2 CVEs
Digital Assets Manager
digital_assets_manager
2 CVEs
Engineering Plant Facilities Management Solution For Documentum
engineering_plant_facilities_management_solution_for_documentum
2 CVEs
Task Space
task_space
2 CVEs
Web Publishers
web_publishers
2 CVEs
Isilon Insightiq
isilon_insightiq
2 CVEs
Powerpath Virtual Appliance
powerpath_virtual_appliance
2 CVEs
Data Domain Os
data_domain_os
2 CVEs
Avamar Data Store
avamar_data_store
2 CVEs
Esrs Policy Manager
esrs_policy_manager
2 CVEs
Archer Grc Platform
archer_grc_platform
2 CVEs
Rsa Archer
rsa_archer
2 CVEs
Rsa Bsafe Crypto C
rsa_bsafe_crypto-c
2 CVEs
Retrospect Client
retrospect_client
1 CVE
Vmware Server
vmware_server
1 CVE
Dantz Retrospect Backup Server
dantz_retrospect_backup_server
1 CVE
Centera Universal Access
centera_universal_access
1 CVE
Networker Client
networker_client
1 CVE
Networker Powersnap
networker_powersnap
1 CVE
Networker Server
networker_server
1 CVE
Networker Storage Node
networker_storage_node
1 CVE
Vmware Player
vmware_player
1 CVE
Captiva Pixtools Distributed Imaging
captiva_pixtools_distributed_imaging
1 CVE
Documentum Applicationxtender
documentum_applicationxtender
1 CVE
Documentum Applicationxtender Workflow Manager
documentum_applicationxtender_workflow_manager
1 CVE
Homebase Server
homebase_server
1 CVE
Rsa Key Manager Client
rsa_key_manager_client
1 CVE
Disk Library
disk_library
1 CVE

CVEs (413)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-2502
1Emc
1Rsa Adaptive Authentication Hosted
May 6, 2026
Jun 4, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in rsa_fso.swf in EMC RSA Adaptive Authentication (Hosted) 11.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-2504
1Emc
1Documentum D2
May 6, 2026
May 26, 2014
N/A· v4
N/A· v3
9.0 HIGH· v2
EMC Documentum D2 3.1 before P20, 3.1 SP1 before P02, 4.0 before P10, 4.1 before P13, and 4.2 before P01 allows remote authenticated users to bypass intended access restrictions and execute arbitrary Documentum Query Lan...Show more
EMC Documentum D2 3.1 before P20, 3.1 SP1 before P02, 4.0 before P10, 4.1 before P13, and 4.2 before P01 allows remote authenticated users to bypass intended access restrictions and execute arbitrary Documentum Query Language (DQL) queries by calling (1) a core method or (2) a D2FS web-service method.Show less
CVE-2014-0639
1Emc
1Rsa Archer Egrc
May 6, 2026
May 25, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer 5.x before GRC 5.4 SP1 P3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-0643
1Emc
2Rsa Netwitness
Rsa Security Analytics
May 6, 2026
May 16, 2014
N/A· v4
N/A· v3
7.6 HIGH· v2
EMC RSA NetWitness before 9.8.5.19 and RSA Security Analytics before 10.2.4 and 10.3.x before 10.3.2, when Kerberos PAM is enabled, do not require a password, which allows remote attackers to bypass authentication by lev...Show more
EMC RSA NetWitness before 9.8.5.19 and RSA Security Analytics before 10.2.4 and 10.3.x before 10.3.2, when Kerberos PAM is enabled, do not require a password, which allows remote attackers to bypass authentication by leveraging knowledge of a valid account name.Show less
CVE-2014-0646
1Emc
1Rsa Access Manager
May 6, 2026
May 1, 2014
N/A· v4
N/A· v3
6.9 MEDIUM· v2
The runtime WS component in the server in EMC RSA Access Manager 6.1.3 before 6.1.3.39, 6.1.4 before 6.1.4.22, 6.2.0 before 6.2.0.11, and 6.2.1 before 6.2.1.03, when INFO logging is enabled, allows local users to discove...Show more
The runtime WS component in the server in EMC RSA Access Manager 6.1.3 before 6.1.3.39, 6.1.4 before 6.1.4.22, 6.2.0 before 6.2.0.11, and 6.2.1 before 6.2.1.03, when INFO logging is enabled, allows local users to discover cleartext passwords by reading log files.Show less
CVE-2014-0645
1Emc
4Cloud Tiering Appliance
Cloud Tiering Appliance SoftwareFile Management Appliance+1 more
May 6, 2026
Apr 17, 2014
N/A· v4
N/A· v3
4.7 MEDIUM· v2
EMC Cloud Tiering Appliance (CTA) 9.x through 10 SP1 and File Management Appliance (FMA) 7.x store DES password hashes for the root, super, and admin accounts, which makes it easier for context-dependent attackers to obt...Show more
EMC Cloud Tiering Appliance (CTA) 9.x through 10 SP1 and File Management Appliance (FMA) 7.x store DES password hashes for the root, super, and admin accounts, which makes it easier for context-dependent attackers to obtain sensitive information via a brute-force attack.Show less
CVE-2014-0644
1Emc
2Cloud Tiering Appliance
Cloud Tiering Appliance Software
May 6, 2026
Apr 17, 2014
N/A· v4
N/A· v3
7.8 HIGH· v2
EMC Cloud Tiering Appliance (CTA) 10 through SP1 allows remote attackers to read arbitrary files via an api/login request containing an XML external entity declaration in conjunction with an entity reference, related to...Show more
EMC Cloud Tiering Appliance (CTA) 10 through SP1 allows remote attackers to read arbitrary files via an api/login request containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, as demonstrated by reading the /etc/shadow file.Show less
CVE-2014-0642
1Emc
1Documentum Content Server
May 6, 2026
Apr 15, 2014
N/A· v4
N/A· v3
5.5 MEDIUM· v2
EMC Documentum Content Server before 6.7 SP1 P26, 6.7 SP2 before P13, 7.0 before P13, and 7.1 before P02 allows remote authenticated users to bypass intended access restrictions and read metadata from certain folders via...Show more
EMC Documentum Content Server before 6.7 SP1 P26, 6.7 SP2 before P13, 7.0 before P13, and 7.1 before P02 allows remote authenticated users to bypass intended access restrictions and read metadata from certain folders via unspecified vectors.Show less
CVE-2014-0638
1Emc
1Rsa Adaptive Authentication On Premise
May 6, 2026
Apr 4, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote attackers to inject arbitrary web script or HTML via vectors involving FRAME elements, rela...Show more
Cross-site scripting (XSS) vulnerability in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote attackers to inject arbitrary web script or HTML via vectors involving FRAME elements, related to a "cross-frame scripting" issue.Show less
CVE-2014-0637
1Emc
1Rsa Adaptive Authentication On Premise
May 6, 2026
Apr 4, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in the back-office case-management application in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote authenticated users to inject arbitrary web...Show more
Cross-site scripting (XSS) vulnerability in the back-office case-management application in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.Show less
CVE-2014-0635
1Emc
1Vplex Geosynchrony
May 6, 2026
Apr 1, 2014
N/A· v4
N/A· v3
7.5 HIGH· v2
Session fixation vulnerability in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 allows remote attackers to hijack web sessions via unspecified vectors.
CVE-2014-0634
1Emc
1Vplex Geosynchrony
May 6, 2026
Apr 1, 2014
N/A· v4
N/A· v3
6.0 MEDIUM· v2
EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote attackers to obtain potentially sensitive information vi...Show more
EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.Show less
CVE-2014-0633
1Emc
1Vplex Geosynchrony
May 6, 2026
Apr 1, 2014
N/A· v4
N/A· v3
7.7 HIGH· v2
The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session-timeout values, which might make it easier for remote attackers to execute arbitrary code by leveraging an unattended workstatio...Show more
The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session-timeout values, which might make it easier for remote attackers to execute arbitrary code by leveraging an unattended workstation.Show less
CVE-2014-0632
1Emc
1Vplex Geosynchrony
May 6, 2026
Apr 1, 2014
N/A· v4
N/A· v3
9.0 HIGH· v2
Directory traversal vulnerability in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 allows remote authenticated users to execute arbitrary code via unspecified vectors.
CVE-2014-0623
1Emc
1Rsa Authentication Manager
May 6, 2026
Mar 27, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in the Self-Service Console in EMC RSA Authentication Manager 7.1 before SP4 P32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to...Show more
Cross-site scripting (XSS) vulnerability in the Self-Service Console in EMC RSA Authentication Manager 7.1 before SP4 P32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "cross frame scripting" issue.Show less
CVE-2014-2276
1Emc
1Connectrix Manager
May 6, 2026
Mar 21, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) before 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote attackers to obtai...Show more
The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) before 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote attackers to obtain sensitive information by importing a crafted firmware file.Show less
CVE-2014-0630
1Emc
1Documentum Taskspace
May 6, 2026
Mar 6, 2014
N/A· v4
N/A· v3
4.0 MEDIUM· v2
EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 allows remote authenticated users to read arbitrary files via a modified imaging-service URL.
CVE-2014-0629
1Emc
1Documentum Taskspace
May 6, 2026
Mar 6, 2014
N/A· v4
N/A· v3
8.5 HIGH· v2
EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle the interaction between the dm_world group and the dm_superusers_dynamic group, which allows remote authenticated users to o...Show more
EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle the interaction between the dm_world group and the dm_superusers_dynamic group, which allows remote authenticated users to obtain sensitive information and gain privileges in opportunistic circumstances by leveraging an incorrect group-addition implementation.Show less
CVE-2014-0624
1Emc
1Rsa Data Loss Prevention
May 6, 2026
Mar 6, 2014
N/A· v4
N/A· v3
2.7 LOW· v2
EMC RSA Data Loss Prevention (DLP) 9.x before 9.6-SP2 does not properly manage sessions, which allows remote authenticated users to gain privileges and bypass intended content-reading restrictions via unspecified vectors...Show more
EMC RSA Data Loss Prevention (DLP) 9.x before 9.6-SP2 does not properly manage sessions, which allows remote authenticated users to gain privileges and bypass intended content-reading restrictions via unspecified vectors.Show less
CVE-2014-0627
2Dell
Emc
2Bsafe Ssl J
Rsa Bsafe Ssl J
Apr 29, 2026
Feb 18, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a certain incomplete-h...Show more
The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x before 5.1.3 and 6.x before 6.0.2 allows remote attackers to trigger the selection of a weak cipher suite by using the wrap method during a certain incomplete-handshake state.Show less