Vulnerability Details CVE-2022-35898
OpenText BizManager before 16.6.0.1 does not perform proper validation during the change-password operation. This allows any authenticated user to change the password of any other user, including the Administrator account.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.5%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2022-35898
-
cpe:2.3:a:opentext:bizmanager:-