Lucene search

Exceed Security Vulnerabilities

cve

CVE-2023-38534

Improper authentication vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.0 and 12.5.1. The vulnerability could allow disclosure of restricted information in unauthenticated...

8.6CVSS

8.4AI Score

0.0004EPSS

2024-03-13 10:15 PM

cve

CVE-2023-38536

HTML injection in OpenText™ Exceed Turbo X affecting version 12.5.1. The vulnerability could result in Cross site...

6.4CVSS

6.5AI Score

0.0004EPSS

2024-03-13 10:15 PM

cve

CVE-2023-38535

Use of Hard-coded Cryptographic Key vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.1 and 12.5.2. The vulnerability could compromise the cryptographic...

4.7CVSS

4.9AI Score

0.0004EPSS

2024-03-13 10:15 PM

cve

CVE-2013-6805

OpenText Exceed OnDemand (EoD) 8 uses weak encryption for passwords, which makes it easier for (1) remote attackers to discover credentials by sniffing the network or (2) local users to discover credentials by reading a .eod8...

6.7AI Score

0.002EPSS

2014-05-19 02:55 PM

cve

CVE-2013-6994

OpenText Exceed OnDemand (EoD) 8 transmits the session ID in cleartext, which allows remote attackers to perform session fixation attacks by sniffing the...

6.9AI Score

0.003EPSS

2014-05-19 02:55 PM

cve

CVE-2013-6806

OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response, which triggers a downgrade to simple authentication that sends credentials in...

6.3AI Score

0.002EPSS

2014-05-19 02:55 PM

cve

CVE-2013-6807

The client in OpenText Exceed OnDemand (EoD) 8 supports anonymous ciphers by default, which allows man-in-the-middle attackers to bypass server certificate validation, redirect a connection, and obtain sensitive information via crafted...

6.2AI Score

0.001EPSS

2014-05-19 02:55 PM

cve

CVE-2008-4729

Stack-based buffer overflow in Hummingbird.XWebHostCtrl.1 ActiveX control (hclxweb.dll) in Hummingbird Xweb ActiveX Control 13.0 and earlier allows remote attackers to execute arbitrary code via a long PlainTextPassword property. NOTE: code execution might not be possible in...

8.2AI Score

0.17EPSS

2008-10-24 12:00 AM

cve

CVE-2004-2258

Xconfig in Hummingbird Exceed before 9.0.0.1, when the Screen Definition is password-protected, allows local users to access certain options by switching to another tab, then switching back to the original...

6.7AI Score

0.0004EPSS

2005-07-19 04:00 AM

cve

CVE-1999-1196

Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port...

6.7AI Score

0.003EPSS

2001-09-12 04:00 AM