5 matches found
CVE-2024-1147
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files...
CVE-2024-1148 Weak Access Control - Arbitrary file upload
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files...
CVE-2024-1148
OpenText PVCS Version Manager contains weak access control that could bypass authentication and allow arbitrary file uploads. CVSS 3.1 base score 9.8 (CRITICAL) with network access, no user interaction required. Affected: PVCS Version Manager (OpenText). Root cause: weak access control enabling a...
CVE-2024-1147 Weak Access Control - Arbitrary file download
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files...
CVE-2024-1147
CVE-2024-1147 describes a weakness in OpenText PVCS Version Manager with weak access control that can bypass authentication to download files. The PT-2024-17018 entry specifies affected versions: OpenText PVCS Version Manager prior to 8.6.3.3. The advisory recommends upgrading to version 8.6.3.3 ...