Vulnerability Details CVE-2024-3486
XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to information disclosure and remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.029
EPSS Ranking 85.9%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2024-3486
-
cpe:2.3:a:microfocus:imanager:3.0
-
cpe:2.3:a:microfocus:imanager:3.0.2
-
cpe:2.3:a:microfocus:imanager:3.0.3
-
cpe:2.3:a:microfocus:imanager:3.1
-
cpe:2.3:a:microfocus:imanager:3.1.1
-
cpe:2.3:a:microfocus:imanager:3.1.2
-
cpe:2.3:a:microfocus:imanager:3.1.3
-
cpe:2.3:a:microfocus:imanager:3.1.4
-
cpe:2.3:a:microfocus:imanager:3.2
-
cpe:2.3:a:microfocus:imanager:3.2.1
-
cpe:2.3:a:microfocus:imanager:3.2.2
-
cpe:2.3:a:microfocus:imanager:3.2.3
-
cpe:2.3:a:microfocus:imanager:3.2.4
-
cpe:2.3:a:microfocus:imanager:3.2.5
-
cpe:2.3:a:microfocus:imanager:3.2.6