Arbitrary Document Read Vulnerability in EMC Documentum D2

Arbitrary Document Read Vulnerability in EMC Documentum D2

CVE-2016-6644 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

EMC Documentum D2 4.5 before patch 15 and 4.6 before patch 03 allows remote attackers to read arbitrary Docbase documents by leveraging knowledge of an r_object_id value.

Learn more about our Web Application Penetration Testing UK.