1935 matches found
PT-2025-32173 · Opentext · Opentext Advance Authentication
Name of the Vulnerable Software and Affected Versions: OpenText Advanced Authentication versions prior to 6.5.0 Description: A weakness exists in OpenText Advanced Authentication that allows a malicious browser plugin to record and replay the user authentication process, bypassing authentication...
OpenText Advanced Authentication 安全漏洞
OpenText Advanced Authentication is an advanced authentication framework from OpenText Canada. A security vulnerability exists in OpenText Advanced Authentication version 6.5.0 and earlier, which originates from a malicious browser plug-in that can record and replay the user authentication proces...
CVE-2024-7650
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
CVE-2024-7650
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
CVE-2024-7650 Remote code execution vulnerability discovered in OpenText™ Directory Services CE 23.4
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
CVE-2024-7650 Remote code execution vulnerability discovered in OpenText™ Directory Services CE 23.4
Improper Control of Generation of Code 'Code Injection' vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4...
CVE-2024-7650
OpenText Directory Services 23.4 is affected by an improper control of generation of code vulnerability that enables remote code inclusion via script injection. The issue originates from OpenText Directory Services, OpenText™ Directory Services, affecting version 23.4. The underlying cause is imp...
OpenText Directory Services 代码注入漏洞
OpenText Directory Services OTDS is an information management solution from OpenText Canada Inc. integrating OpenText products and solutions with the company's enterprise directory infrastructure. A code injection vulnerability exists in OpenText Directory Services version 23.4 that stems from...
PT-2025-29078 · Opentext · Opentext Directory Services
Name of the Vulnerable Software and Affected Versions: OpenText™ Directory Services version 23.4 Description: An improper control of generation of code 'Code Injection' vulnerability exists in OpenText™ Directory Services, potentially allowing remote code inclusion through script injection...
CVE-2025-0885
Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow unauthorized access to calendar items marked private. This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3,...
CVE-2025-0885 Incorrect Authorization vulnerability affects OpenText™ GroupWise
Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow unauthorized access to calendar items marked private. This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3,...
CVE-2025-0885
CVE-2025-0885 describes an Incorrect Authorization vulnerability in OpenText GroupWise where misconfigured access control could allow unauthorized access to private calendar items. Affected versions include 7–17.5 , 23.4 , and 24.1–24.4 . The issue’s root cause is improper authorization logic lea...
CVE-2025-0885 Incorrect Authorization vulnerability affects OpenText™ GroupWise
Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow unauthorized access to calendar items marked private. This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3,...
OpenText GroupWise 安全漏洞
OpenText GroupWise is an enterprise-grade team collaboration software from OpenText Canada. A security vulnerability exists in OpenText GroupWise versions 17.5 and earlier, 23.4, 24.1, 24.2, 24.3, and 24.4, which stems from improper authorization and could result in unauthorized access to private...
PT-2025-27768 · Opentext · Opentext Groupwise
Name of the Vulnerable Software and Affected Versions: OpenText GroupWise versions 7 through 17.5 OpenText GroupWise version 23.4 OpenText GroupWise version 24.1 OpenText GroupWise version 24.2 OpenText GroupWise version 24.3 OpenText GroupWise version 24.4 Description: The issue is related to an...
CVE-2025-2236
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services. This issue affects Advanced...
CVE-2025-2236
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services. This issue affects Advanced...
CVE-2025-2236 Exposure of Sensitive System Information vulnerability during configuration affecting OpenText Advanced Authentication.
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services. This issue affects Advanced...
CVE-2025-2236
CVE-2025-2236 affects OpenText Advanced Authentication before version 6.5. The issue is described as exposure of sensitive system information to an unauthorized control sphere during the management and configuration of external services. CVSSv4 base score is Low (2.1), with local attack vector an...
CVE-2025-2236 Exposure of Sensitive System Information vulnerability during configuration affecting OpenText Advanced Authentication.
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services. This issue affects Advanced...