CVE-2012-0396

medium

Description

EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or read object metadata, via a search.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/72994

http://www.securityfocus.com/bid/51863

http://securitytracker.com/id?1026639

http://secunia.com/advisories/47920

http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html

Details

Source: Mitre, NVD

Published: 2012-02-06

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 4.3

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00251