CVE-2025-2517— Reference to Expired Domain Vulnerability in OpenText™ ArcSight Enterprise Security Manager
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-2517
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Reference to Expired Domain Vulnerability in OpenText™ ArcSight Enterprise Security Manager
Source: NVD (National Vulnerability Database)
Vulnerability Description
Reference to Expired Domain Vulnerability in OpenText™ ArcSight Enterprise Security Manager.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
在过期或释放后对资源进行操作
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenText ArcSight Enterprise Security Manager 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenText ArcSight Enterprise Security Manager是加拿大OpenText公司的一个功能强大、适应性强的 SIEM,可提供全面的数据收集和实时威胁分析。 OpenText ArcSight Enterprise Security Manager存在安全漏洞,该漏洞源于引用过期域名。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| OpenText | ArcSight Enterprise Security Manager | 0 ~ 7.6.6 | - |
II. Public POCs for CVE-2025-2517
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-2517
请登录查看更多情报信息。
Same Patch Batch · OpenText · 2025-04-21 · 4 CVEs total
| CVE-2024-12543 | A user enumeration and subsequent data integrity vulnerability affecting barcode functiona | |
| CVE-2024-12863 | Stored XSS in Discussions functionality | |
| CVE-2024-12862 | REST API allows users without permissions to remove external collaborators |
IV. Related Vulnerabilities
Same vendor: OpenText
- CVE-2026-2123
Privilege escalation vulnerability in Operations Agent - CVE-2024-11604
Insertion of Sensitive Information into Log File - CVE-2025-13478
Cache Misconfiguration Leading to Cross-User Data Exposure - CVE-2025-8050
External Control of File vulnerability has been discovered i - CVE-2025-8052
HQL Injection vulnerability has been discovered in Opentext
Same weakness: CWE-672
- CVE-2013-10075
Apache::Session versions through 1.94 for Perl re-creates de - CVE-2026-43585
OpenClaw < 2026.4.15 - Bearer Token Validation Bypass via St - CVE-2026-1629
Permalink Preview Information Disclosure After Permission Re - CVE-2026-31875
Parse Server MFA recovery codes not consumed after use - CVE-2026-1237
Juju 安全漏洞
V. Comments for CVE-2025-2517
No comments yet