EMC Documentum Content Server may be vulnerable to an information disclosure vulnerability that could be potentially exploited by malicious users to gain unauthorized access to metadata. This is due to improper authorization checks being performed when trying to access metadata from folders outside of restricted folders configured for Content Server users. This vulnerability is only limited to reading the metadata as the malicious user is not able to gain read/write access to the content itself. EMC Documentum Content Server versions 7.1, 7.0, 6.7 SP2, 6.7 SP1, and versions prior to 6.7 SP1 are affected.
ed25d10d52c1ca576a3bfaf205e04259dcc96b76fdba8533bf165e6a24db2508