CVE-2024-3483

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger command injection and insecure deserialization issues...

CVE-2024-3968

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task...

CVE-2024-5202

Arbitrary File Read in OpenText Dimensions RM allows authenticated users to read files stored on the server via webservices...

CVE-2024-5201

Privilege Escalation in OpenText Dimensions RM allows an authenticated user to escalate there privilege to the privilege of another user via HTTP Request...

CVE-2024-1811

A potential vulnerability has been identified in OpenText ArcSight Platform. The vulnerability could be remotely exploited...

CVE-2024-1147

Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files...

CVE-2024-1148

Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files...

CVE-2024-4555

Improper Privilege Management vulnerability in OpenText NetIQ Access Manager allows user account impersonation in specific scenario. This issue affects NetIQ Access Manager before 5.0.4.1 and before 5.1...

CVE-2024-4190

Stored Cross-Site Scripting XSS vulnerabilities have been identified in OpenText ArcSight Logger. The vulnerabilities could be remotely exploited...

CVE-2024-4554

Improper Input Validation vulnerability in OpenText NetIQ Access Manager leads to Cross-Site Scripting XSS attack. This issue affects Access Manager before 5.0.4.1 and 5.1...

CVE-2024-0622

Local privilege escalation vulnerability affects OpenText Operations Agent product versions 12.15 and 12.20-12.25 when installed on Non-Windows platforms. The vulnerability could allow local privilege escalation...

CVE-2024-8125

Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management Extended ECM allows Parameter Injection. A bad actor with the required OpenText Content Management privileges not root could expose the vulnerability to carry out a remote code execution attack on the...

CVE-2024-8125 A remote code vulnerability has been discovered in OpenText™ Content Management.

Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management Extended ECM allows Parameter Injection. A bad actor with the required OpenText Content Management privileges not root could expose the vulnerability to carry out a remote code execution attack on the...

CVE-2024-8125

CVE-2024-8125 affects OpenText Content Management (Extended ECM) with the WebReports module installed and enabled, versioned 10.0–24.4. The vulnerability is due to improper validation of a specified input type, enabling parameter injection that could lead to remote code execution. The exposure re...

CVE-2024-8125 A remote code vulnerability has been discovered in OpenText™ Content Management.

Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management Extended ECM allows Parameter Injection. A bad actor with the required OpenText Content Management privileges not root could expose the vulnerability to carry out a remote code execution attack on the...

PT-2025-3697 · Opentext · Opentext Content Management

Name of the Vulnerable Software and Affected Versions: OpenText Content Management Extended ECM versions 10.0 through 24.4 Description: The issue is related to improper validation of specified input types, allowing parameter injection. An actor with necessary privileges could exploit this to carr...

OpenText Content Management 安全漏洞

OpenText Content Management is an enterprise content management software from OpenText Canada. A security vulnerability exists in OpenText Content Management versions 10.0 through 24.4, which stems from improper validation of input. An attacker could exploit the vulnerability to remotely execute...

CVE-2024-7085

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText™ Solutions Business Manager SBM allows Stored XSS. The vulnerability could result in the exposure of private information to an unauthorized actor. This issue affects Solutions...

CVE-2024-7085 Exposure of private information vulnerability has been discovered in OpenText™ Solutions Business Manager (SBM).

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText™ Solutions Business Manager SBM allows Stored XSS. The vulnerability could result in the exposure of private information to an unauthorized actor. This issue affects Solutions...

CVE-2024-7085 Exposure of private information vulnerability has been discovered in OpenText™ Solutions Business Manager (SBM).

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OpenText™ Solutions Business Manager SBM allows Stored XSS. The vulnerability could result in the exposure of private information to an unauthorized actor. This issue affects Solutions...