EUVD-2024-16917

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Weak access control in OpenText PVCS Version Manager may allow authentication bypass and file uploads.

Reporter	Title	Published	Views	Family All 6
CNNVD	OpenText PVCS Version Manager 安全漏洞	21 Mar 202400:00	–	cnnvd
CVE	CVE-2024-1148	21 Mar 202407:34	–	cve
Cvelist	CVE-2024-1148 Weak Access Control - Arbitrary file upload	21 Mar 202407:34	–	cvelist
NVD	CVE-2024-1148	21 Mar 202408:15	–	nvd
RedhatCVE	CVE-2024-1148	5 Feb 202505:24	–	redhatcve
Vulnrichment	CVE-2024-1148 Weak Access Control - Arbitrary file upload	21 Mar 202407:34	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "6cc73ce6-35ba-3fb7-a408-312f9d591338",
        "vendor": {
          "name": "Opentext"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "4b1e2b93-c320-3520-ad47-66983f6ecd16",
        "product": {
          "name": "PVCS Version Manager"
        }
      },
      {
        "id": "56ae5dfd-0ddb-384e-88db-6d51c23f91f2",
        "product": {
          "name": "PVCS Version Manager"
        },
        "product_version": "0 <8.6.3.3"
      }
    ]
  }
]

Source	Link
portal	www.portal.microfocus.com/s/article/KM000026669

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.19.8

EPSS0.0007

SSVC