8.6
CVE-2023-38534
- EPSS 0.19%
- Veröffentlicht 13.03.2024 22:15:08
- Zuletzt bearbeitet 10.03.2025 15:35:44
- Quelle security@opentext.com
- CVE-Watchlists
- Unerledigt
LoginImproper authentication vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.0 and 12.5.1. The vulnerability could allow disclosure of restricted information in unauthenticated RPC.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Opentext ≫ Exceed Turbox Version12.5.0
Opentext ≫ Exceed Turbox Version12.5.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.416 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| security@opentext.com | 8.6 | 3.9 | 4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.