CVE-2020-11859

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Nov 6, 2024
Updated: Nov 8, 2024
CWE ID 79

Summary

CVE-2020-11859 is an Input Validation vulnerability affecting OpenText iManager before version 3.2.3. An attacker can exploit this weakness to inject malicious scripts, leading to Cross-Site Scripting (XSS) attacks. The vulnerability allows an attacker to execute arbitrary code in the context of the targeted user, potentially gaining unauthorized access or stealing sensitive information. This issue poses a significant risk to organizations using unpatched versions of OpenText iManager and highlights the importance of regular software updates and secure input validation practices.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share