Vulnerabilities > Opentext
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-12 | CVE-2021-22518 | Information Exposure Through Log Files vulnerability in Opentext Identity Manager Azuread Driver A vulnerability identified in OpenText™ Identity Manager AzureAD Driver that allows logging of sensitive information into log file. | 5.5 |
| 2024-08-22 | CVE-2023-7260 | Path Traversal vulnerability in Opentext Cx-E Voice Path Traversal vulnerability discovered in OpenText™ CX-E Voice, affecting all version through 22.4. | 7.5 |
| 2024-08-12 | CVE-2023-7249 | Path Traversal vulnerability in Opentext Directory Services Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in OpenText OpenText Directory Services allows Path Traversal.This issue affects OpenText Directory Services: from 16.4.2 before 24.1. | 9.8 |
| 2024-08-06 | CVE-2024-6357 | Authorization Bypass Through User-Controlled Key vulnerability in Opentext Arcsight Intelligence Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence. | 8.8 |
| 2024-08-06 | CVE-2024-6358 | Incorrect Authorization vulnerability in Opentext Arcsight Intelligence Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence. | 8.8 |
| 2024-08-06 | CVE-2024-6359 | Unspecified vulnerability in Opentext Arcsight Intelligence Privilege escalation vulnerability identified in OpenText ArcSight Intelligence. | 9.8 |
| 2024-08-05 | CVE-2024-6361 | Cross-site Scripting vulnerability in Opentext ALM Octane Improper Neutralization vulnerability (XSS) has been discovered in OpenText™ ALM Octane. | 5.4 |
| 2024-07-31 | CVE-2024-4187 | Cross-site Scripting vulnerability in Opentext Filr 24.1.1/24.2 Stored XSS vulnerability has been discovered in OpenText™ Filr product, affecting versions 24.1.1 and 24.2. | 5.4 |
| 2024-03-15 | CVE-2023-7248 | Unspecified vulnerability in Opentext Vertica Certain functionality in OpenText Vertica Management console might be prone to bypass via crafted requests. The vulnerability would affect one of Vertica’s authentication functionalities by allowing specially crafted requests and sequences. | 9.8 |
| 2024-01-29 | CVE-2023-4550 | Files or Directories Accessible to External Parties vulnerability in Opentext Appbuilder 21.2 Improper Input Validation, Files or Directories Accessible to External Parties vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An unauthenticated or authenticated user can abuse a page of AppBuilder to read arbitrary files on the server on which it is hosted. | 7.5 |