6 matches found
CVE-2026-11877
An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. This issue affects Access Manager before 5.1.3...
CVE-2026-11877
CVE-2026-11877 describes a missing authorization issue in OpenText Access Manager prior to 5.1.3, where an unauthorized user can modify configuration via API calls. The affected product is OpenText Access Manager; the vulnerability stems from insufficient access control on API configuration endpo...
CVE-2026-11877 Missing Authorization Vulnerability in OpenText Access Manager
An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. This issue affects Access Manager before 5.1.3...
CVE-2026-11878
CVE-2026-11878 describes a reflected Cross-Site Scripting (XSS) vulnerability in OpenText Access Manager, affecting the Access Manager releases 5.1 through 5.1.2. The issue arises from improper neutralization of input during web page generation, enabling XSS. According to the provided metrics, th...
CVE-2026-11878 Reflected Cross-Site Scripting vulnerability in OpenText Access Manager
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in OpenText Access Manager allows Cross-Site Scripting XSS. This issue affects Access Manager: from 5.1 through 5.1.2...
EUVD-2026-38791
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in OpenText Access Manager allows Cross-Site Scripting XSS. This issue affects Access Manager: from 5.1 through 5.1.2...