Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2021-22501

Dec. 19, 2024, 5:15 p.m.

Tags

security@opentext.com
CWE-611
2024-12-19
CVE-2021-22501

Product(s) Impacted

OpenText Operations Bridge Manager

  • 2017.05
  • 2017.11
  • 2018.05
  • 2018.11
  • 2019.05
  • 2019.11
  • 2020.05
  • 2020.10

Description

Improper Restriction of XML External Entity Reference vulnerability in OpenText™ Operations Bridge Manager allows Input Data Manipulation.  The vulnerability could be exploited to confidential information This issue affects Operations Bridge Manager: 2017.05, 2017.11, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10.

Weaknesses

CWE-611
Improper Restriction of XML External Entity Reference

The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.

CWE ID: 611

Date

Published: Dec. 19, 2024, 5:15 p.m.

Last Modified: Dec. 19, 2024, 5:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@opentext.com

References

https://portal.microfocus.com/ security@opentext.com