CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2023/05/24 9:15 p.m.•1 views

CVE-2022-41221

7.1CVSS5.8AI score0.00049EPSS

NVD•added 2023/05/24 9:15 p.m.•7 views

CVE-2022-41221

7.1CVSS6.9AI score0.00049EPSS

Prion•added 2023/05/24 9:15 p.m.•12 views

Design/Logic Flaw

3.3CVSS6.9AI score0.00049EPSS

Vulnrichment•added 2023/05/24 12:0 a.m.•9 views

CVE-2022-41221

7.2AI score0.00049EPSS

Positive Technologies•added 2023/05/24 12:0 a.m.•4 views

PT-2023-13967 · Opentext · Opentext Archive Center Administration

Name of the Vulnerable Software and Affected Versions: OpenText Archive Center Administration versions prior to 21.3 Description: The issue allows XXE attacks, where authenticated users could upload XML files that are not sufficiently validated, potentially leading to data exfiltration or localiz...

7.1CVSS7.1AI score0.00049EPSS

CVE•added 2023/05/24 12:0 a.m.•52 views

CVE-2022-41221

The CVE-2022-41221 issue affects OpenText Archive Center Administration client versions up to 21.2, where authenticated users can upload XML files that are not properly validated, enabling XXE attacks that may lead to data exfiltration or localized DoS. Root cause: insufficient XML validation. Mi...

7.1CVSS6.9AI score0.00049EPSS

Cvelist•added 2023/05/24 12:0 a.m.•13 views

CVE-2022-41221

7.1AI score0.00049EPSS

CNNVD•added 2023/05/24 12:0 a.m.•4 views

OpenText Archive Center Administration 代码问题漏洞

OpenText Archive Center Administration is an archive center administration from OpenText Canada. A security vulnerability exists in OpenText Archive Center Administration version 21.2 and prior versions. An attacker could exploit the vulnerability to upload a specially crafted XML file to an...

7.1CVSS7.1AI score0.00049EPSS

ATTACKERKB•added 2023/05/18 5:15 p.m.•1 views

CVE-2023-31871

OpenText Documentum Content Server before 23.2 has a flaw that allows for privilege escalation from a non-privileged Documentum user to root. The software comes prepackaged with a root owned SUID binary dmsecurewriter. The binary has security controls in place preventing creation of a file in a...

7.8CVSS5.8AI score0.00047EPSS

OSV•added 2023/05/18 5:15 p.m.•1 views

CVE-2023-31871

7.8CVSS7.2AI score

Exploits0References1

NVD•added 2023/05/18 5:15 p.m.•13 views

CVE-2023-31871

7.8CVSS8AI score0.00047EPSS

Prion•added 2023/05/18 5:15 p.m.•15 views

Design/Logic Flaw

4.3CVSS7.9AI score0.00047EPSS

Cvelist•added 2023/05/18 12:0 a.m.•14 views

CVE-2023-31871

8.1AI score0.00047EPSS

CNNVD•added 2023/05/18 12:0 a.m.•2 views

OpenText Documentum Content Server 安全漏洞

OpenText Documentum Content Server is a data storage platform from OpenText, Inc. that is used to provide secure, enterprise-wide control over any type of content. A security vulnerability exists in OpenText Documentum Content Server versions prior to 23.2, which stems from a privilege escalation...

7.8CVSS7.5AI score0.00047EPSS

CVE•added 2023/05/18 12:0 a.m.•58 views

CVE-2023-31871

OpenText Documentum Content Server before 23.2 is affected by a privilege-escalation vulnerability. A root-owned SUID binary, dm_secure_writer, can bypass security controls to enable an arbitrary file write as root from a non-privileged Documentum user. Documents from Red Hat and PTSecurity corro...

7.8CVSS7.9AI score0.00047EPSS

Vulnrichment•added 2023/05/18 12:0 a.m.•9 views

CVE-2023-31871

8AI score0.00047EPSS