AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2014-2510: The JAXB XML parser in EMC Documentum Foundation Services (DFS) 6.6 before P39, 6.7 SP1 before P28, and 6.7 SP2 before P

infovulnerability

security

Source: NVD/CVE DatabaseJuly 8, 2014CVE-2014-2510

Summary

CVE-2014-2510 is a vulnerability in EMC Documentum Foundation Services (DFS) versions 6.6, 6.7 SP1, and 6.7 SP2 that allows authenticated users to read files they shouldn't have access to through an XXE (XML External Entity, a flaw where specially crafted XML input tricks a parser into accessing external files) attack. The vulnerability affects components like My Documentum for Desktop, My Documentum for Microsoft Outlook, and CenterStage.

Vulnerability Details

CVSS Score

6.8

EPSS (30-day exploit probability)

EPSS: 0.5%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-200

CAPEC (Attack Pattern)

CAPEC-116

Original source: https://nvd.nist.gov/vuln/detail/CVE-2014-2510

First tracked: February 15, 2026 at 08:43 PM

Classified by LLM (prompt v3) · confidence: 95%