CVE-2024-1148 – Weak Access Control - Arbitrary file upload
https://notcve.org/view.php?id=CVE-2024-1148
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and uploading of files. El control de acceso débil en OpenText PVCS Version Manager permite la posibilidad de eludir la autenticación y la carga de archivos. • https://portal.microfocus.com/s/article/KM000026669 • CWE-287: Improper Authentication •
CVE-2024-1147 – Weak Access Control - Arbitrary file download
https://notcve.org/view.php?id=CVE-2024-1147
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files. El control de acceso débil en OpenText PVCS Version Manager permite una posible omisión de la autenticación y la descarga de archivos. • https://portal.microfocus.com/s/article/KM000026669 • CWE-287: Improper Authentication •
CVE-2024-1811 – OpenText ArcSight Platform Remote Vulnerability
https://notcve.org/view.php?id=CVE-2024-1811
A potential vulnerability has been identified in OpenText ArcSight Platform. The vulnerability could be remotely exploited. • https://portal.microfocus.com/s/article/KM000027383 •
CVE-2023-38536
https://notcve.org/view.php?id=CVE-2023-38536
HTML injection in OpenText™ Exceed Turbo X affecting version 12.5.1. The vulnerability could result in Cross site scripting. Inyección de HTML en OpenText™ Exceed Turbo X que afecta a la versión 12.5.1. La vulnerabilidad podría provocar Cross Site Scripting. • https://support.opentext.com/csm?id=kb_article_view&sysparm_article=KB0796182 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-38535
https://notcve.org/view.php?id=CVE-2023-38535
Use of Hard-coded Cryptographic Key vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.1 and 12.5.2. The vulnerability could compromise the cryptographic keys. Uso de vulnerabilidad de clave criptográfica codificada en OpenText™ Exceed Turbo X que afecta a las versiones 12.5.1 y 12.5.2. La vulnerabilidad podría comprometer las claves criptográficas. • https://support.opentext.com/csm?id=kb_article_view&sysparm_article=KB0801267 • CWE-321: Use of Hard-coded Cryptographic Key •