Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.1
CVSSv3

CVE-2022-45924

Published: 18/01/2023 Updated: 26/01/2023
CVSS v3 Base Score: 8.1 | Impact Score: 5.2 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Opentext Extended Ecm

Vulnerability Summary

An issue exists in OpenText Content Suite Platform 22.1 (16.2.19.1803). The endpoint itemtemplate.createtemplate2 allows a low-privilege user to delete arbitrary files on the server's local filesystem.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

opentext opentext extended ecm

Exploits

Exploit DB: OpenText Extended ECM 22.3 File Deletion / LFI / Privilege Escsalation
OpenText Extended ECM versions 1622 through 223 suffer from arbitrary file deletion, information disclosure, local file inclusion, and privilege escalation vulnerabilities ...

References

NVD-CWE-noinfohttps://sec-consult.com/vulnerability-lab/advisory/multiple-post-authentication-vulnerabilities-including-rce-opentexttm-extended-ecm/http://seclists.org/fulldisclosure/2023/Jan/14http://packetstormsecurity.com/files/170615/OpenText-Extended-ECM-22.3-File-Deletion-LFI-Privilege-Escsalation.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/170615/OpenText-Extended-ECM-22.3-File-Deletion-LFI-Privilege-Escsalation.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook