Search Results | AttackerKB

Show filters

Topics 15 Users 9,712

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

15 Total Results

Displaying 1-10 of 15

Attacker Value

Unknown

CVE-2024-4429

Disclosure Date: May 28, 2024 (last updated January 22, 2025)

Cross-Site Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to sensitive information disclosure.

Attack Vector: Network Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2024-3969

Disclosure Date: May 28, 2024 (last updated January 22, 2025)

XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3969

Disclosure Date: May 28, 2024 (last updated January 22, 2025)

XML External Entity injection vulnerability found in OpenText™ iManager 3.2.6.0200. This could lead to remote code execution by parsing untrusted XML payload

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3970

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure by directory traversal.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3970

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure by directory traversal.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3968

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3968

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3967

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution unisng unsafe java object deserialization.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3967

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution unisng unsafe java object deserialization.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2024-3488

Disclosure Date: May 15, 2024 (last updated January 22, 2025)

File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication.

Attack Vector: Network Privileges: None User Interaction: None

0