CVE-2020-11859
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Summary
CVE-2020-11859 is an Input Validation vulnerability affecting OpenText iManager before version 3.2.3. An attacker can exploit this weakness to inject malicious scripts, leading to Cross-Site Scripting (XSS) attacks. The vulnerability allows an attacker to execute arbitrary code in the context of the targeted user, potentially gaining unauthorized access or stealing sensitive information. This issue poses a significant risk to organizations using unpatched versions of OpenText iManager and highlights the importance of regular software updates and secure input validation practices.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Micro Focus International