iManager
by Opentext
CVEs (21)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-24467 | Hig | 0.57 | 8.8 | 0.01 | Nov 22, 2024 | Possible Command Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0000. | ||
| CVE-2021-38117 | Hig | 0.57 | 8.8 | 0.01 | Nov 22, 2024 | Possible Command injection Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000. | ||
| CVE-2021-38116 | Hig | 0.57 | 8.8 | 0.01 | Nov 22, 2024 | Possible Elevation of Privilege Vulnerability in iManager has been discovered in OpenText™ iManager. This impacts all versions before 3.2.5 | ||
| CVE-2021-38135 | Hig | 0.56 | 8.6 | 0.00 | Nov 22, 2024 | Possible External Service Interaction attack in iManager has been discovered in OpenText™ iManager 3.2.6.0000. | ||
| CVE-2024-3969 | Hig | 0.51 | 7.8 | 0.01 | May 28, 2024 | XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload | ||
| CVE-2024-3968 | Hig | 0.51 | 7.8 | 0.01 | May 15, 2024 | Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task. | ||
| CVE-2024-3486 | Hig | 0.51 | 7.8 | 0.00 | May 15, 2024 | XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to information disclosure and remote code execution. | ||
| CVE-2024-3483 | Hig | 0.51 | 7.8 | 0.01 | May 15, 2024 | Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger command injection and insecure deserialization issues. | ||
| CVE-2023-24466 | Hig | 0.49 | 7.5 | 0.01 | Nov 22, 2024 | Possible XML External Entity Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0200. | ||
| CVE-2022-26324 | Hig | 0.49 | 7.6 | 0.00 | Nov 22, 2024 | Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.6.0000. | ||
| CVE-2020-11859 | Hig | 0.49 | 7.6 | 0.00 | Nov 6, 2024 | Improper Input Validation vulnerability in OpenText iManager allows Cross-Site Scripting (XSS). This issue affects iManager before 3.2.3 | ||
| CVE-2024-3967 | Hig | 0.49 | 7.6 | 0.01 | May 15, 2024 | Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution unisng unsafe java object deserialization. | ||
| CVE-2021-38134 | Med | 0.40 | 6.1 | 0.00 | Nov 22, 2024 | Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.5.0000. | ||
| CVE-2021-38119 | Med | 0.40 | 6.1 | 0.00 | Nov 22, 2024 | Possible Reflected Cross-Site Scripting (XSS) Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000. | ||
| CVE-2024-3484 | Med | 0.37 | 5.7 | 0.01 | May 15, 2024 | Path Traversal found in OpenText™ iManager 3.2.6.0200. This can lead to privilege escalation or file disclosure. | ||
| CVE-2021-38118 | Med | 0.36 | 5.5 | 0.00 | Nov 22, 2024 | Possible improper input validation Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000. | ||
| CVE-2024-3488 | Med | 0.36 | 5.6 | 0.00 | May 15, 2024 | File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication. | ||
| CVE-2024-4429 | Med | 0.35 | 5.4 | 0.00 | May 28, 2024 | Cross-Site Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to sensitive information disclosure. | ||
| CVE-2024-3970 | Med | 0.34 | 5.3 | 0.01 | May 15, 2024 | Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure by directory traversal. | ||
| CVE-2024-3485 | Med | 0.34 | 5.3 | 0.00 | May 15, 2024 | Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure. |
- risk 0.57cvss 8.8epss 0.01
Possible Command Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0000.
- risk 0.57cvss 8.8epss 0.01
Possible Command injection Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.
- risk 0.57cvss 8.8epss 0.01
Possible Elevation of Privilege Vulnerability in iManager has been discovered in OpenText™ iManager. This impacts all versions before 3.2.5
- risk 0.56cvss 8.6epss 0.00
Possible External Service Interaction attack in iManager has been discovered in OpenText™ iManager 3.2.6.0000.
- risk 0.51cvss 7.8epss 0.01
XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload
- risk 0.51cvss 7.8epss 0.01
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task.
- risk 0.51cvss 7.8epss 0.00
XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to information disclosure and remote code execution.
- risk 0.51cvss 7.8epss 0.01
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger command injection and insecure deserialization issues.
- risk 0.49cvss 7.5epss 0.01
Possible XML External Entity Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0200.
- risk 0.49cvss 7.6epss 0.00
Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.6.0000.
- risk 0.49cvss 7.6epss 0.00
Improper Input Validation vulnerability in OpenText iManager allows Cross-Site Scripting (XSS). This issue affects iManager before 3.2.3
- risk 0.49cvss 7.6epss 0.01
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution unisng unsafe java object deserialization.
- risk 0.40cvss 6.1epss 0.00
Possible XSS in iManager URL for access Component has been discovered in OpenText™ iManager 3.2.5.0000.
- risk 0.40cvss 6.1epss 0.00
Possible Reflected Cross-Site Scripting (XSS) Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.
- risk 0.37cvss 5.7epss 0.01
Path Traversal found in OpenText™ iManager 3.2.6.0200. This can lead to privilege escalation or file disclosure.
- risk 0.36cvss 5.5epss 0.00
Possible improper input validation Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.
- risk 0.36cvss 5.6epss 0.00
File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication.
- risk 0.35cvss 5.4epss 0.00
Cross-Site Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to sensitive information disclosure.
- risk 0.34cvss 5.3epss 0.01
Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure by directory traversal.
- risk 0.34cvss 5.3epss 0.00
Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure.
Page 1 of 2