CVE-2023-24467
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 22, 2024
CWE ID 78
CWE ID 77
Summary
CVE-2023-24467 is a newly discovered vulnerability affecting OpenText™ iManager version 3.2.6.0000. The issue involves a potential Command Injection vulnerability in the iManager GET parameter. Hackers could exploit this weakness by injecting malicious commands, potentially leading to unauthorized system access or data theft. The exact impact of this vulnerability on an affected system depends on the specific configuration and implementation. Users are strongly advised to update their iManager software to a patched version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- OpenText™ iManager
Affected Vendors
- OpenText