Low severityNVD Advisory· Published Nov 19, 2025· Updated Apr 15, 2026
CVE-2025-11884
CVE-2025-11884
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in opentext uCMDB allows Stored XSS. The vulnerability could allow an attacker has high level access to UCMDB to create or update data with malicious scripts
This issue affects uCMDB: 24.4.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.