216.73.217.172

CVE-2024-8125

· Published 04/02/2025 22:15 · Modified 04/02/2025 22:15

Labels: CVE-2024-8125 2025-02-04CVE-2024-8125CWE-1287[email protected]

Essential information

Published
04/02/2025 22:15
Modified
04/02/2025 22:15
Author
Creator
CISA KEV
No
CWE

Description

Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management (Extended ECM) allows Parameter Injection.  A bad actor with the required OpenText Content Management privileges (not root) could expose the vulnerability to carry out a remote code execution attack on the target system. This issue affects Content Management (Extended ECM): from 10.0 through 24.4  with WebReports module installed and enabled.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References