CVE-2021-38117— Possible Remote Code Execution Vulnerability OpenText iManager
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-38117
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Possible Remote Code Execution Vulnerability OpenText iManager
Source: NVD (National Vulnerability Database)
Vulnerability Description
Possible Command injection Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenText iManager 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenText iManager是加拿大OpenText公司的一款基于 Web 的管理工具。 OpenText iManager 3.2.4.0000版本存在安全漏洞,该漏洞源于iManager中可能存在命令注入漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2021-38117
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-38117
请登录查看更多情报信息。
Same Patch Batch · OpenText · 2024-11-22 · 10 CVEs total
| CVE-2021-38116 | 8.8 HIGH | Possible Command injection Vulnerability in OpenText iManager |
| CVE-2023-24467 | 8.8 HIGH | Possible Command Injection in OpenText iManager |
| CVE-2021-38135 | 8.6 HIGH | Possible External service interaction Vulnerability in OpenText iManager |
| CVE-2022-26324 | 7.6 HIGH | Possible XSS in iManager URL for access Component |
| CVE-2023-24466 | 7.5 HIGH | Possible XML External Entity Injection in OpenText iManager |
| CVE-2021-38134 | 6.1 MEDIUM | Possible Reflected and Stored XSS in OpenText iManager |
| CVE-2021-38119 | 6.1 MEDIUM | Possible Reflected Cross-Site Scripting (XSS) Vulnerability in OpenText iManager |
| CVE-2021-38118 | 5.5 MEDIUM | Possible Local Privilege Escalation Vulnerability in OpenText iManager |
| CVE-2024-10863 | Client-side audit exclusion vulnerability |
IV. Related Vulnerabilities
Same product: iManager
- CVE-2021-38116
Possible Command injection Vulnerability in OpenText iManage - CVE-2021-38118
Possible Local Privilege Escalation Vulnerability in OpenTex - CVE-2021-38119
Possible Reflected Cross-Site Scripting (XSS) Vulnerability - CVE-2021-38134
Possible Reflected and Stored XSS in OpenText iManager - CVE-2021-38135
Possible External service interaction Vulnerability in OpenT
Same vendor: OpenText
- CVE-2026-2123
Privilege escalation vulnerability in Operations Agent - CVE-2024-11604
Insertion of Sensitive Information into Log File - CVE-2025-13478
Cache Misconfiguration Leading to Cross-User Data Exposure - CVE-2025-8050
External Control of File vulnerability has been discovered i - CVE-2025-8052
HQL Injection vulnerability has been discovered in Opentext
Same weakness: CWE-94
- CVE-2021-47939
Evolution CMS 3.1.6 Authenticated Remote Code Execution via - CVE-2021-47938
ImpressCMS 1.4.2 Remote Code Execution via Autotasks - CVE-2021-47935
Sentry 8.2.0 Remote Code Execution via Pickle Deserializatio - CVE-2022-50944
Aero CMS 0.0.1 PHP Code Injection via posts.php - CVE-2026-8211
codelibs Fess JSP File AdminDesignAction.java update code in
V. Comments for CVE-2021-38117
No comments yet