Vulnerabilities > Opentext > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-22 | CVE-2023-7260 | Path Traversal vulnerability in Opentext Cx-E Voice Path Traversal vulnerability discovered in OpenText™ CX-E Voice, affecting all version through 22.4. | 7.5 |
| 2024-08-06 | CVE-2024-6357 | Authorization Bypass Through User-Controlled Key vulnerability in Opentext Arcsight Intelligence Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence. | 8.8 |
| 2024-08-06 | CVE-2024-6358 | Incorrect Authorization vulnerability in Opentext Arcsight Intelligence Incorrect Authorization vulnerability identified in OpenText ArcSight Intelligence. | 8.8 |
| 2024-03-13 | CVE-2020-11862 | Allocation of Resources Without Limits or Throttling vulnerability in Opentext Netiq Privileged Account Manager Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged Account Manager on Linux, Windows, 64 bit allows Flooding.This issue affects NetIQ Privileged Account Manager: before 3.7.0.2. | 7.5 |
| 2024-03-13 | CVE-2023-38534 | Improper Authentication vulnerability in Opentext Exceed Turbox 12.5.0/12.5.1 Improper authentication vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.0 and 12.5.1. | 7.5 |
| 2024-01-29 | CVE-2023-4550 | Files or Directories Accessible to External Parties vulnerability in Opentext Appbuilder 21.2 Improper Input Validation, Files or Directories Accessible to External Parties vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An unauthenticated or authenticated user can abuse a page of AppBuilder to read arbitrary files on the server on which it is hosted. | 7.5 |
| 2024-01-29 | CVE-2023-4551 | Unspecified vulnerability in Opentext Appbuilder 21.2 Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows OS Command Injection. The AppBuilder's Scheduler functionality that facilitates creation of scheduled tasks is vulnerable to command injection. | 8.8 |
| 2024-01-29 | CVE-2023-4552 | Unspecified vulnerability in Opentext Appbuilder 21.2 Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manage existing databases can leverage them to exploit the AppBuilder server - including access to its local file system. This issue affects AppBuilder: from 21.2 before 23.2. | 7.1 |
| 2023-05-24 | CVE-2022-41221 | XXE vulnerability in Opentext Archive Center Administration The client in OpenText Archive Center Administration through 21.2 allows XXE attacks. | 7.1 |
| 2023-05-18 | CVE-2023-31871 | Unspecified vulnerability in Opentext Documentum Content Server 7.3 OpenText Documentum Content Server before 23.2 has a flaw that allows for privilege escalation from a non-privileged Documentum user to root. | 7.8 |