CVE-2024-12862

CVE-2024-12862 describes an Incorrect Authorization vulnerability in the OpenText Content Server REST API on Windows and Linux, allowing users without proper permissions to remove external collaborators. Affected versions: Content Server 20.2–24.4. CVSS v4.0 base score 5.5 (Medium). No public exp...

CVE-2024-12862 REST API allows users without permissions to remove external collaborators

Incorrect Authorization vulnerability in the OpenText Content Server REST API on Windows, Linux allows users without the appropriate permissions to remove external collaborators.This issue affects Content Server: 20.2-24.4...

OpenText Content Management CE 跨站脚本漏洞

OpenText Content Management CE is an enterprise content management solution from OpenText Canada. A cross-site scripting vulnerability exists in OpenText Content Management CE versions 20.2 through 25.1, which stems from stored cross-site scripting in the Discussions feature that could lead to co...

PT-2025-17437 · Opentext · Opentext Arcsight Enterprise Security Manager

Name of the Vulnerable Software and Affected Versions: OpenText ArcSight Enterprise Security Manager affected versions not specified Description: The issue concerns a Reference to Expired Domain Vulnerability. There is no information provided about the estimated number of potentially affected...

PT-2025-17443 · Opentext · Opentext Content Management

Name of the Vulnerable Software and Affected Versions: OpenText Content Management CE versions 20.2 through 25.1 Description: The issue allows authenticated malicious users to inject code into the system through a Stored XSS in Discussions. This affects OpenText Content Management CE on both...

PT-2025-17436 · Opentext · Opentext Content Server

Name of the Vulnerable Software and Affected Versions: OpenText Content Server versions 20.2 through 24.4 Description: The issue is related to an Incorrect Authorization vulnerability in the OpenText Content Server REST API, allowing users without the appropriate permissions to remove external...

OpenText Content Server 安全漏洞

OpenText Content Server is an enterprise content management software from OpenText Canada. A security vulnerability exists in OpenText Content Server versions 20.2 through 24.4, which stems from improper authorization of the REST API and could result in an unprivileged user deleting external...

OpenText Content Management 安全漏洞

OpenText Content Management is an enterprise content management software from OpenText Canada. A security vulnerability exists in OpenText Content Management versions 24.3 through 25.1, which stems from a user enumeration and data integrity issue in the barcode functionality, which could lead to ...

OpenText ArcSight Enterprise Security Manager 安全漏洞

OpenText ArcSight Enterprise Security Manager is a powerful and adaptable SIEM from OpenText Canada that provides comprehensive data collection and real-time threat analysis. A security vulnerability exists in OpenText ArcSight Enterprise Security Manager that stems from referencing an expired...

PT-2025-17442 · Opentext · Opentext Content Management

Name of the Vulnerable Software and Affected Versions: OpenText Content Management versions 24.3 through 25.1 Description: The issue concerns User Enumeration and Data Integrity in the Barcode functionality, allowing a malicious authenticated attacker to potentially alter barcode attributes...

CVE-2024-12530

Uncontrolled Search Path Element vulnerability in OpenText Secure Content Manager on Windows allows DLL Side-Loading.This issue affects Secure Content Manager: 23.4. End-users can potentially exploit the vulnerability to execute malicious code in the trusted context of the thick-client applicatio...

CVE-2024-12530 Insecure Dynamic-Link Library (DLL) Load vulnerability

Uncontrolled Search Path Element vulnerability in OpenText Secure Content Manager on Windows allows DLL Side-Loading.This issue affects Secure Content Manager: 23.4. End-users can potentially exploit the vulnerability to execute malicious code in the trusted context of the thick-client applicatio...

CVE-2024-12530 Insecure Dynamic-Link Library (DLL) Load vulnerability

Uncontrolled Search Path Element vulnerability in OpenText Secure Content Manager on Windows allows DLL Side-Loading.This issue affects Secure Content Manager: 23.4. End-users can potentially exploit the vulnerability to execute malicious code in the trusted context of the thick-client applicatio...

CVE-2024-12530

CVE-2024-12530 affects OpenText Secure Content Manager (Windows), specifically version 23.4, due to an Uncontrolled Search Path Element that enables DLL side-loading. This can allow end users to execute malicious code in the trusted context of the thick-client. The issue is locally exploitable wi...

CVE-2022-26323

Incorrect Use of Privileged APIs vulnerability in OpenText™ Operations Bridge Manager, OpenText™ Operations Bridge Suite Containerized, OpenText™ UCMDB Classic and Containerized allows Privilege Escalation. The vulnerability could allow authenticated attackers to elevate user privileges. This...

CVE-2022-26323

OpenText OpenText Operations Bridge Manager, Operations Bridge Suite (Containerized), and OpenText UCMDB (Classic and Containerized) are affected by CVE-2022-26323. The issue is described as Incorrect Use of Privileged APIs that could allow authenticated attackers to escalate privileges. Affected...

CVE-2022-26323 Incorrect Use of Privileged vulnerability has been discovered on OpenText™ UCMDB and Operation Bridge Manager product.

Incorrect Use of Privileged APIs vulnerability in OpenText™ Operations Bridge Manager, OpenText™ Operations Bridge Suite Containerized, OpenText™ UCMDB Classic and Containerized allows Privilege Escalation. The vulnerability could allow authenticated attackers to elevate user privileges. This...

CVE-2022-26323 Incorrect Use of Privileged vulnerability has been discovered on OpenText™ UCMDB and Operation Bridge Manager product.

Incorrect Use of Privileged APIs vulnerability in OpenText™ Operations Bridge Manager, OpenText™ Operations Bridge Suite Containerized, OpenText™ UCMDB Classic and Containerized allows Privilege Escalation. The vulnerability could allow authenticated attackers to elevate user privileges. This...

PT-2025-17020 · Opentext · Opentext Secure Content Manager

Name of the Vulnerable Software and Affected Versions: OpenText Secure Content Manager version 23.4 Description: The issue is related to an Uncontrolled Search Path Element vulnerability in OpenText Secure Content Manager on Windows, which allows DLL Side-Loading. This could potentially be...

OpenText多款产品 安全漏洞

OpenText Operations Bridge Manager and others are products of OpenText Canada.OpenText Operations Bridge Manager is an enterprise event and performance management software.OpenText Operations Bridge Suite is an OpenText Operations Bridge Manager is an enterprise event and performance management...