2 matches found
CVE-2022-41221
The client in OpenText Archive Center Administration through 21.2 allows XXE attacks. Authenticated users of the OpenText Archive Center Administration client Versions 16.2.3, 21.2, and older versions could upload XML files to the application that it did not sufficiently validate. As a result,...
CVE-2022-41221
The CVE-2022-41221 issue affects OpenText Archive Center Administration client versions up to 21.2, where authenticated users can upload XML files that are not properly validated, enabling XXE attacks that may lead to data exfiltration or localized DoS. Root cause: insufficient XML validation. Mi...