Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

opentext — Vulnerabilities & Security Advisories 144

Browse all 144 CVE security advisories affecting opentext. AI-powered Chinese analysis, POCs, and references for each vulnerability.

OpenText operates as a global enterprise information management provider, offering solutions for content management, digital asset management, and analytics. Its extensive software portfolio, including Content Server and Exstream, has historically been a frequent target for security researchers, resulting in a significant number of recorded Common Vulnerabilities and Exposures. The most prevalent vulnerability classes affecting these platforms include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation or improper access controls. While the company maintains standard security protocols, the sheer volume of its legacy and integrated applications creates a broad attack surface. Recent incidents highlight the critical need for rigorous patch management and continuous monitoring to mitigate risks associated with these complex enterprise systems, ensuring that sensitive data remains protected against evolving cyber threats.

Top products by opentext: Brava! Desktop iManager NetIQ Advance Authentication eDirectory Flipper AppBuilder OpenText Application Automation Tools ArcSight Enterprise Security Manager Privileged Access Manager ArcSight Intelligence OpenText Content Management NetIQ Access Manager Secure Content Manager OpenText Directory Services Self Service Password Reset Performance Center Dimensions RM ArcSight Management Center PVCS Version Manager Advance Authentication Advanced Authentication OpenText Enterprise Security Manager Identity Manager AzureAD Driver NetIQ Directory and Resource Administrator Identity Manager Advanced Edition Content Server Identity Manager IDM Driver and Extensions Identity Manager REST Driver 1.1.2.0200 Operations Agent
CVE IDTitleCVSSSeverityPublished
CVE-2020-11847 Vulnerability in sshrelay in privileged access manager provides full system access. — Privileged Access ManagerCWE-78 8.2 High2024-08-21
CVE-2020-11846 Improper handling of token allows access to restricted resource in Privileged Access Manager — Privileged Access ManagerCWE-269 8.7 High2024-08-21
CVE-2020-11850 Cross site scripting vulnerability in Self Service Password Reset — Self Service Password ResetCWE-20 7.3 High2024-08-21
CVE-2023-7249 OpenText Directory Services 安全漏洞 — OpenText Directory ServicesCWE-22 6.5AIMediumAI2024-08-12
CVE-2024-6357 Insecure Direct Object Reference vulnerability — ArcSight IntelligenceCWE-639 6.3 Medium2024-08-06
CVE-2024-6359 Privilege escalation vulnerability — ArcSight IntelligenceCWE-269 6.4 Medium2024-08-06
CVE-2024-6358 Incorrect Authorization vulnerability — ArcSight IntelligenceCWE-863 6.3 Medium2024-08-06
CVE-2024-7050 OpenText Directory Services 安全漏洞 — OpenText Directory ServicesCWE-287 9.1 -2024-07-26
CVE-2020-25836 Potential information leakage resulting in unauthorized access — NetIQ Directory and Resource AdministratorCWE-200 6.3 Medium2024-07-16
CVE-2024-4190 OpenText ArcSight Logger Stored XSS — ArcSight LoggerCWE-79 8.1 High2024-06-11
CVE-2020-11843 Potential information leakage in administrator enabled debug mode — NetIQ Access ManagerCWE-200 6.5 Medium2024-06-11
CVE-2024-4429 Cross Site Request Forgery vulnerability in iManager — iManagerCWE-352 5.4 Medium2024-05-28
CVE-2024-3969 XML External Entity injection vulnerability in iManager — iManagerCWE-611 7.8 High2024-05-28
CVE-2024-5201 Dimensions RM - Privilege Escalation — Dimensions RMCWE-287 8.8 High2024-05-23
CVE-2024-5202 Dimensions RM - Arbitrary File Read — Dimensions RMCWE-200 7.7 High2024-05-23
CVE-2024-2835 OpenText ArcSight Enterprise Security Manager and ArcSight Platform Stored XSS — ArcSight Enterprise Security ManagerCWE-79 8.7 High2024-05-20
CVE-2024-3482 OpenText ArcSight Enterprise Security Manager and ArcSight Platform Stored XSS — ArcSight Enterprise Security ManagerCWE-79 8.7 High2024-05-20
CVE-2021-22508 Potential SQL injection in OpenText Operations Bridge Reporter — Operations Bridge ReporterCWE-20 7.2 High2024-05-17
CVE-2024-3488 File Upload vulnerability in unauthenticated session found in iManager. — iManagerCWE-20 5.6 Medium2024-05-15
CVE-2024-3487 Broken Authentication vulnerability in iManager — iManagerCWE-287 3.5 Low2024-05-15
CVE-2024-3486 XML External Entity injection vulnerability in iManager — iManagerCWE-611 7.8 High2024-05-15
CVE-2024-3485 Server-Side Request Forgery vulnerability in iManager — iManagerCWE-918 5.3 Medium2024-05-15
CVE-2024-3484 Path Traversal vulnerability found in iManager — iManagerCWE-22 5.7 Medium2024-05-15
CVE-2024-3483 Remote Code Execution vulnerability in the iManager — iManagerCWE-502 7.8 High2024-05-15
CVE-2024-3967 Remote Code Execution vulnerability in the iManager — iManagerCWE-502 7.6 High2024-05-15
CVE-2024-3968 Remote Code Execution vulnerability in the iManager — iManagerCWE-20 7.8 High2024-05-15
CVE-2024-3970 Server-Side Request Forgery vulnerability in iManager — iManagerCWE-918 5.3 Medium2024-05-15
CVE-2023-7240 Broken Access Control leading to SSRF in NetIQ Identity Console — NetIQ Identity ConsoleCWE-20 5.8 Medium2024-05-07
CVE-2024-2834 OpenText ArcSight Management Center and ArcSight Platform Stored XSS — ArcSight Management CenterCWE-79 8.7 High2024-04-08
CVE-2024-1973 Elevation of privileges vulnerability — Secure Content ManagerCWE-269 8.5 High2024-03-25

This page lists every published CVE security advisory associated with opentext. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.