Lucene search
OpenTextVULNRICHMENT:CVE-2022-26327HistoryAug 21, 2024 - 3:25 p.m.
CVE-2022-26327 Stored cross-site scripting (XSS) has been discovered in OpenText™ Performance Center
2024-08-2115:25:48
CWE-200
OpenText
github.com
cve-2022-26327
stored cross-site scripting
opentext performance center
exposure of sensitive information
unauthorized actor
windows
retrieve embedded sensitive data
vulnerability
CVSS4
5.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
ACTIVE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/SC:L/VI:N/SI:N/VA:N/SA:N/U:Clear/RE:M
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenText Performance Center on Windows allows Retrieve Embedded Sensitive Data.This issue affects Performance Center: 12.63.
CVSS4
5.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
ACTIVE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/SC:L/VI:N/SI:N/VA:N/SA:N/U:Clear/RE:M
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2022-26327