Shodan
Vulnerabilities
Vulnerable Software
Microfocus:  Security Vulnerabilities
CVE-2020-11859
Improper Input Validation vulnerability in OpenText iManager allows Cross-Site Scripting (XSS). This issue affects iManager before 3.2.3
CVSS Score
7.6
EPSS Score
0.001
Published
2024-11-06
CVE-2024-4184
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-10-16
CVE-2024-4189
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-10-16
CVE-2024-4211
Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Automation Tools allows Exploiting Incorrectly Configured Access Control Security Levels. Multiple missing permission checks - ALM job config has been discovered in OpenText Application Automation Tools. The vulnerability could allow users with Overall/Read permission to enumerate ALM server names, usernames and client IDs configured to be used with ALM servers. This issue affects OpenText Application Automation Tools: 24.1.0 and below.
CVSS Score
2.4
EPSS Score
0.001
Published
2024-10-16
CVE-2024-4690
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-10-16
CVE-2024-4692
Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Automation Tools allows Exploiting Incorrectly Configured Access Control Security Levels. Multiple missing permission checks - Service Virtualization config has been discovered in in OpenText Application Automation Tools. The vulnerability could allow users with Overall/Read permission to enumerate Service Virtualization server names. This issue affects OpenText Application Automation Tools: 24.1.0 and below.
CVSS Score
2.4
EPSS Score
0.001
Published
2024-10-16
CVE-2021-38132
Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. This impact all version before 9.2.6.0000.
CVSS Score
5.3
EPSS Score
0.002
Published
2024-09-12
CVE-2021-38133
Possible External Service Interaction attack in eDirectory has been discovered in OpenText™ eDirectory. This impact all version before 9.2.6.0000.
CVSS Score
7.4
EPSS Score
0.001
Published
2024-09-12
CVE-2021-22533
Possible Insertion of Sensitive Information into Log File Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.4.0000.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-09-12
CVE-2021-38131
Possible Cross-Site Scripting (XSS) Vulnerability in eDirectory has been discovered in OpenText™ eDirectory 9.2.5.0000.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-09-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved