EMC Documentum Content Server may be vulnerable to an information disclosure vulnerability that could be potentially exploited by malicious users to gain unauthorized access to metadata. This is due to improper authorization checks being performed when trying to access metadata from folders outside of restricted folders configured for Content Server users. This vulnerability is only limited to reading the metadata as the malicious user is not able to gain read/write access to the content itself. EMC Documentum Content Server versions 7.1, 7.0, 6.7 SP2, 6.7 SP1, and versions prior to 6.7 SP1 are affected.
ed25d10d52c1ca576a3bfaf205e04259dcc96b76fdba8533bf165e6a24db2508
EMC Documentum Content Server contains a privilege elevation vulnerability that may allow an unauthorized user to obtain highest administrative privileges on the system.
19646ed85ddfc22151746ef55a992a6a2d7dc26304edb39cc0f04a0afcf2ff4a