Browse all 40 CVE security advisories affecting Tungsten Automation. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Tungsten Automation specializes in document capture and workflow automation, primarily serving enterprises with invoice processing and accounts payable solutions. Its software portfolio, which includes OpenText Capture and related tools, has historically been targeted due to its complex integration with legacy enterprise systems. Security audits reveal a pattern of vulnerabilities, predominantly involving remote code execution, cross-site scripting, and privilege escalation flaws. These issues often stem from insufficient input validation and improper access controls within the application’s web interfaces and API endpoints. While no single catastrophic data breach has defined the vendor’s public history, the accumulation of forty Common Vulnerabilities and Exposures indicates persistent weaknesses in patch management and secure coding practices. Organizations relying on these automation tools must prioritize rigorous vulnerability scanning and timely updates to mitigate the risk of unauthorized system access or data exfiltration.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-7875 | XSS in Tungsten Automation TotalAgility — TotalAgilityCWE-79 | 6.1 | - | 2024-12-06 |
| CVE-2024-7874 | XSS in Tungsten Automation TotalAgility — TotalAgilityCWE-79 | 6.1 | - | 2024-12-06 |
This page lists every published CVE security advisory associated with Tungsten Automation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.