{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T00:21:56.465","vulnerabilities":[{"cve":{"id":"CVE-2015-4530","sourceIdentifier":"security_alert@emc.com","published":"2015-08-20T10:59:11.887","lastModified":"2025-04-12T10:46:40.837","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site request forgery (CSRF) vulnerability in EMC Documentum WebTop before 6.8P01, Documentum Administrator through 7.2, Documentum Digital Assets Manager through 6.5SP6, Documentum Web Publishers through 6.5SP7, and Documentum Task Space through 6.7SP2 allows remote attackers to hijack the authentication of arbitrary users.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2518."},{"lang":"es","value":"Vulnerabilidad de CSRF en EMC Documentum WebTop en versiones anteriores a 6.8P01, Documentum Administrator hasta la versión 7.2, Documentum Digital Assets Manager hasta la versión 6.5SP6, Documentum Web Publishers hasta la versión 6.5SP7 y Documentum Task Space hasta la versión 6.7SP2, permite a atacantes remotos secuestrar la autenticación de usuarios arbitrarios. NOTA: esta vulnerabilidad existe debido a una solución incompleta de la vulnerabilidad CVE-2014-2518."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-352"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:emc:documentum_administrator:*:*:*:*:*:*:*:*","versionEndIncluding":"7.2","matchCriteriaId":"C0F3BD69-53DE-4F10-ABFA-33B423A74C9E"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:documentum_digital_asset_manager:*:sp6:*:*:*:*:*:*","versionEndIncluding":"6.5","matchCriteriaId":"2EB25D60-1424-422A-959C-9C1D670F6155"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:documentum_taskspace:*:sp2:*:*:*:*:*:*","versionEndIncluding":"6.7","matchCriteriaId":"D3270E32-E010-4E39-8E9E-6B05AAC89492"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:documentum_web_publisher:*:sp7:*:*:*:*:*:*","versionEndIncluding":"6.5","matchCriteriaId":"EE6BEA80-2CBE-4A46-97D5-ABD5EF47207C"},{"vulnerable":true,"criteria":"cpe:2.3:a:emc:documentum_webtop:*:*:*:*:*:*:*:*","versionEndIncluding":"6.8","matchCriteriaId":"D66CB470-DF43-4995-842D-AAB3B259976F"}]}]}],"references":[{"url":"http://seclists.org/bugtraq/2015/Aug/87","source":"security_alert@emc.com"},{"url":"http://www.securityfocus.com/bid/76405","source":"security_alert@emc.com"},{"url":"http://seclists.org/bugtraq/2015/Aug/87","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/76405","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}