Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Imanager
(Microfocus)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-05-15 | CVE-2024-3484 | Path Traversal found in OpenText™ iManager 3.2.6.0200. This can lead to privilege escalation or file disclosure. | Imanager | 9.8 | ||
| 2024-05-15 | CVE-2024-3485 | Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure. | Imanager | 7.5 | ||
| 2024-05-15 | CVE-2024-3486 | XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to information disclosure and remote code execution. | Imanager | 9.8 | ||
| 2024-05-15 | CVE-2024-3487 | Broken Authentication vulnerability discovered in OpenText™ iManager 3.2.6.0200. This vulnerability allows an attacker to manipulate certain parameters to bypass authentication. | Imanager | 9.8 | ||
| 2024-05-15 | CVE-2024-3488 | File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication. | Imanager | 9.8 | ||
| 2024-05-15 | CVE-2024-3967 | Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution unisng unsafe java object deserialization. | Imanager | 9.8 | ||
| 2024-05-15 | CVE-2024-3968 | Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task. | Imanager | 9.8 | ||
| 2024-05-15 | CVE-2024-3970 | Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure by directory traversal. | Imanager | 7.5 | ||
| 2024-05-28 | CVE-2024-3969 | XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload | Imanager | 9.8 | ||
| 2024-05-28 | CVE-2024-4429 | Cross-Site Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to sensitive information disclosure. | Imanager | 7.4 |