Microfocus: >> Imanager >> 3.2.4 Security Vulnerabilities
Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This
could lead to senstive information disclosure by directory traversal.
CVSS Score
5.3
EPSS Score
0.0
Published
2024-05-15
Broken Authentication vulnerability discovered in OpenText™ iManager 3.2.6.0200. This
vulnerability allows an attacker to manipulate certain parameters to bypass
authentication.
CVSS Score
3.5
EPSS Score
0.001
Published
2024-05-15
File Upload vulnerability in unauthenticated
session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a
file without authentication.
CVSS Score
5.6
EPSS Score
0.003
Published
2024-05-15
Remote Code
Execution has been discovered in
OpenText™ iManager 3.2.6.0200. The vulnerability can
trigger remote code execution unisng unsafe java object deserialization.
CVSS Score
7.6
EPSS Score
0.015
Published
2024-05-15
Remote Code
Execution has been discovered in
OpenText™ iManager 3.2.6.0200. The vulnerability can
trigger remote code execution using custom file upload task.
CVSS Score
7.8
EPSS Score
0.03
Published
2024-05-15
Path Traversal found in OpenText™ iManager 3.2.6.0200. This can lead to privilege escalation
or file disclosure.
CVSS Score
5.7
EPSS Score
0.004
Published
2024-05-15
Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This
could lead to senstive information disclosure.
CVSS Score
5.3
EPSS Score
0.002
Published
2024-05-15
XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to information disclosure and remote code execution.
CVSS Score
7.8
EPSS Score
0.054
Published
2024-05-15
Remote Code
Execution has been discovered in
OpenText™ iManager 3.2.6.0200. The vulnerability can
trigger command injection and insecure deserialization issues.
CVSS Score
7.8
EPSS Score
0.002
Published
2024-05-15
Page 2