Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Opentext — Vulnerabilities & Security Advisories 144

Browse all 144 CVE security advisories affecting Opentext. AI-powered Chinese analysis, POCs, and references for each vulnerability.

OpenText operates as a global enterprise information management provider, offering solutions for content management, digital asset management, and analytics. Its extensive software portfolio, including Content Server and Exstream, has historically been a frequent target for security researchers, resulting in a significant number of recorded Common Vulnerabilities and Exposures. The most prevalent vulnerability classes affecting these platforms include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation or improper access controls. While the company maintains standard security protocols, the sheer volume of its legacy and integrated applications creates a broad attack surface. Recent incidents highlight the critical need for rigorous patch management and continuous monitoring to mitigate risks associated with these complex enterprise systems, ensuring that sensitive data remains protected against evolving cyber threats.

Top products by Opentext: Brava! Desktop iManager NetIQ Advance Authentication eDirectory Flipper AppBuilder OpenText Application Automation Tools ArcSight Enterprise Security Manager Privileged Access Manager ArcSight Intelligence OpenText Content Management NetIQ Access Manager Secure Content Manager OpenText Directory Services Self Service Password Reset Performance Center Dimensions RM ArcSight Management Center PVCS Version Manager Advance Authentication Advanced Authentication OpenText Enterprise Security Manager Identity Manager AzureAD Driver NetIQ Directory and Resource Administrator Identity Manager Advanced Edition Content Server Identity Manager IDM Driver and Extensions Identity Manager REST Driver 1.1.2.0200 Operations Agent
CVE IDTitleCVSSSeverityPublished
CVE-2024-1148 Weak Access Control - Arbitrary file upload — PVCS Version ManagerCWE-287 9.8 Critical2024-03-21
CVE-2024-1147 Weak Access Control - Arbitrary file download — PVCS Version ManagerCWE-287 9.8 Critical2024-03-21
CVE-2024-1811 OpenText ArcSight Platform Remote Vulnerability — ArcSight Platform 9.8 Critical2024-03-20
CVE-2023-7248 OpenText Vertica Management console might be prone to bypass via crafted requests — Vertica Management ConsoleCWE-20 5.0 Medium2024-03-15
CVE-2020-11862 Insecure renegotiation in SSL protocol caused Denial of service attack in Privileged Account Manager — NetIQ Privileged Account ManagerCWE-770 8.6 High2024-03-13
CVE-2023-32264 OpenText Documentum D2 安全漏洞 — Documentum D2CWE-1385 5.8 Medium2024-03-08
CVE-2024-0967 OpenText / Micro Focus ArcSight Enterprise Security Manager Remote Vulnerability — ArcSight Enterprise Security Manager 4.3 Medium2024-03-01
CVE-2024-1470 Elevation of Privilege attack on NetIQ Client login extension — NetIQ Client Login ExtensionCWE-639 7.1 High2024-02-20
CVE-2023-6123 Improper Neutralization vulnerability affects OpenText ALM Octane. — ALM Octane. 7.5 High2024-02-15
CVE-2024-0622 Local privilege escalation vulnerability could affect OpenText Operations Agent on Non-Windows platforms. — Operations Agent CWE-269 8.8 High2024-02-15
CVE-2023-4554 XML External Entity (XXE) Processing — AppBuilderCWE-611 4.9 Medium2024-01-29
CVE-2023-4553 Unauthenticated Access to AppBuilder Configuration Files — AppBuilderCWE-20 5.3 Medium2024-01-29
CVE-2023-4552 Java Database Connectivity (JDBC) URL Manipulation — AppBuilderCWE-20 5.5 Medium2024-01-29
CVE-2023-4551 Command Injection via Task Scheduler — AppBuilderCWE-20 7.2 High2024-01-29
CVE-2023-4550 Unauthenticated Arbitrary File Read — AppBuilderCWE-20 7.5 High2024-01-29
CVE-2023-32268 Administrator equivalent Filr user can access proxy administrator credentials — FilrCWE-522 7.2 High2023-12-06
CVE-2023-5913 A potential Privilege Escalation vulnerability in opentext Fortify ScanCentral DAST API. — Fortify ScanCentral DASTCWE-266 8.2 High2023-11-08
CVE-2023-4501 Authentication bypass in OpenText (Micro Focus) Enterprise Server — Visual COBOL, COBOL Server, Enterprise Developer, Enterprise ServerCWE-287 9.8 Critical2023-09-12
CVE-2021-31504 OpenText Brava! 安全漏洞 — Brava! DesktopCWE-822 7.8 -2021-08-03
CVE-2021-31503 OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-824 7.8 -2021-08-03
CVE-2021-31514 Opentext OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-787 7.8 -2021-06-29
CVE-2021-31513 OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-787 7.8 -2021-06-29
CVE-2021-31512 OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-125 7.8 -2021-06-29
CVE-2021-31511 Opentext OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-787 7.8 -2021-06-29
CVE-2021-31510 OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-125 7.8 -2021-06-29
CVE-2021-31509 OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-787 7.8 -2021-06-29
CVE-2021-31507 OpenText Brava! 安全漏洞 — Brava! DesktopCWE-121 7.8 -2021-06-29
CVE-2021-31508 Opentext OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-787 7.8 -2021-06-29
CVE-2021-31506 OpenText Brava! 缓冲区错误漏洞 — Brava! DesktopCWE-125 3.3 -2021-06-29
CVE-2021-31502 OpenText Brava! 资源管理错误漏洞 — Brava! DesktopCWE-416 7.8 -2021-06-15

This page lists every published CVE security advisory associated with Opentext. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.