Privilege Escalation Vulnerability in OpenText Documentum Content Server
CVE-2023-31871

7.8HIGH

Key Information:

Vendor: Opentext
Status: Documentum Content Server
Vendor: CVE Published:; 18 May 2023

Summary

OpenText Documentum Content Server prior to version 23.2 contains a vulnerability that enables a non-privileged user to escalate their privileges to root. The flaw arises from the presence of a SUID binary, dm_secure_writer, with insufficient security controls. Although the binary restricts file creation in non-owned directories when executed as a non-root user, sophisticated exploitation techniques can bypass these restrictions, facilitating unauthorized root-level file writing. This vulnerability poses significant risks, as it can allow attackers to manipulate system files and gain full control of the affected server.

References

https://gist.github.com/picar0jsu/a8e623639da34f36202ce5e...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 18, 2023
Vulnerability Reserved
Apr 29, 2023