Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tungsten Automation — Vulnerabilities & Security Advisories 40

Browse all 40 CVE security advisories affecting Tungsten Automation. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tungsten Automation specializes in document capture and workflow automation, primarily serving enterprises with invoice processing and accounts payable solutions. Its software portfolio, which includes OpenText Capture and related tools, has historically been targeted due to its complex integration with legacy enterprise systems. Security audits reveal a pattern of vulnerabilities, predominantly involving remote code execution, cross-site scripting, and privilege escalation flaws. These issues often stem from insufficient input validation and improper access controls within the application’s web interfaces and API endpoints. While no single catastrophic data breach has defined the vendor’s public history, the accumulation of forty Common Vulnerabilities and Exposures indicates persistent weaknesses in patch management and secure coding practices. Organizations relying on these automation tools must prioritize rigorous vulnerability scanning and timely updates to mitigate the risk of unauthorized system access or data exfiltration.

Top products by Tungsten Automation: Power PDF TotalAgility Kofax Capture
CVE IDTitleCVSSSeverityPublished
CVE-2026-23751 Kofax Capture 6.0.0.0 Unauthenticated File Read/Write & SMB Coercion via .NET Remoting — Kofax CaptureCWE-306 9.8 Critical2026-04-23
CVE-2024-12547 Tungsten Automation Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2025-02-11
CVE-2024-12548 Tungsten Automation Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability — Power PDFCWE-416 5.5 -2025-02-11
CVE-2024-12549 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — Power PDFCWE-125 7.8 -2025-02-11
CVE-2024-12550 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2025-02-11
CVE-2024-12551 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — Power PDFCWE-125 7.8 -2025-02-11
CVE-2024-7875 XSS in Tungsten Automation TotalAgility — TotalAgilityCWE-79 6.1 -2024-12-06
CVE-2024-7874 XSS in Tungsten Automation TotalAgility — TotalAgilityCWE-79 6.1 -2024-12-06
CVE-2024-9755 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — Power PDFCWE-125 7.8 -2024-11-22
CVE-2024-9757 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9761 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9735 Tungsten Automation Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-11-22
CVE-2024-9744 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-11-22
CVE-2024-9751 Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — Power PDFCWE-125 7.8 -2024-11-22
CVE-2024-9764 Tungsten Automation Power PDF PDF File Parsing Use-After-Free Remote Code Execution Vulnerability — Power PDFCWE-416 7.8 -2024-11-22
CVE-2024-9758 Tungsten Automation Power PDF AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9753 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9763 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9762 Tungsten Automation Power PDF OXPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9760 Tungsten Automation Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-11-22
CVE-2024-9759 Tungsten Automation Power PDF GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-11-22
CVE-2024-9754 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9752 Tungsten Automation Power PDF JPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 3.3 -2024-11-22
CVE-2024-9734 Tungsten Automation Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-122 7.8 -2024-11-22
CVE-2024-9733 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-11-22
CVE-2024-9736 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-11-22
CVE-2024-9737 Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-11-22
CVE-2024-9739 Tungsten Automation Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability — Power PDFCWE-119 7.8 -2024-11-22
CVE-2024-9750 Tungsten Automation Power PDF PNG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — Power PDFCWE-125 7.8 -2024-11-22
CVE-2024-9745 Tungsten Automation Power PDF TIF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-121 7.8 -2024-11-22

This page lists every published CVE security advisory associated with Tungsten Automation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.