OpenTextCVELIST:CVE-2023-4964CVE-2023-4964 Potential open redirect vulnerability in opentext SMAX and AMX product.
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
17.0%
Potential open redirect vulnerability
in opentext Service Management Automation X
(SMAX) versions 2020.05, 2020.08,
2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11 and opentext Asset
Management X (AMX) versions 2021.08, 2021.11, 2022.05, 2022.11. The
vulnerability could allow attackers to redirect a user to
malicious websites.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Service Management Automation X (SMAX)",
"vendor": "opentext ",
"versions": [
{
"status": "affected",
"version": "2020.05"
},
{
"status": "affected",
"version": "2020.08"
},
{
"status": "affected",
"version": "2020.11"
},
{
"status": "affected",
"version": "2021.02"
},
{
"status": "affected",
"version": "2021.05"
},
{
"status": "affected",
"version": "2021.08"
},
{
"status": "affected",
"version": "2021.11"
},
{
"status": "affected",
"version": "2022.05"
},
{
"status": "affected",
"version": "2022.11"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Asset Management X (AMX)",
"vendor": "opentext",
"versions": [
{
"status": "affected",
"version": "2021.08"
},
{
"status": "affected",
"version": "2021.11"
},
{
"status": "affected",
"version": "2022.05"
},
{
"status": "affected",
"version": "2022.11"
}
]
}
]Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:L
AI Score
Confidence
High
EPSS
Percentile
17.0%