EMC Documentum Content Server before 6.7 SP2 P17, 7.0 through P15, and 7.1 before P08 does not properly check authorization for subgroups of privileged groups, which allows remote authenticated sysadmins to gain super-user privileges, and bypass intended restrictions on data access and server actions, via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/95990
http://www.securitytracker.com/id/1030855
http://www.securityfocus.com/bid/69819
http://secunia.com/advisories/61251
http://archives.neohapsis.com/archives/bugtraq/2014-09/0093.html