CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-2236 – Exposure of Sensitive System Information vulnerability during configuration affecting OpenText Advanced Authentication.
https://notcve.org/view.php?id=CVE-2025-2236
27 May 2025 — Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services. This issue affects Advanced Authentication versions before 6.5. Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could ... • https://portal.microfocus.com/s/article/KM000039947 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-24468
https://notcve.org/view.php?id=CVE-2023-24468
15 Mar 2023 — Broken access control in Advanced Authentication versions prior to 6.4.1.1 and 6.3.7.2 • https://www.netiq.com/documentation/advanced-authentication-63/advanced-authentication-releasenotes-6372/data/advanced-authentication-releasenotes-6372.html • CWE-284: Improper Access Control •