Expert found critical flaws in OpenText Enterprise Content Management System

Pierluigi Paganini January 22, 2023

The OpenText enterprise content management (ECM) system is affected by multiple vulnerabilities, including a critical RCE.

Armin Stock (Atos), researcher at cybersecurity firm Sec Consult, discovered multiple vulnerabilities in the OpenText enterprise content management (ECM) product.

OpenText Extended ECM is an enterprise CMS platform that manages the information lifecycle by integrating with leading enterprise applications, such as SAP, Microsoft 365, Salesforce and SAP SuccessFactors.

OpenText Enterprise Content Management System

The list of vulnerabilities discovered by the experts includes:

The advisories for the high-severity vulnerabilities includes Proof-of-concept (PoC) code.

The expert reported the issues to OpenText in October 2022 which addressed it this month with the release of version 22.4.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, ECM)

[adrotate banner=”5″]

[adrotate banner=”13″]

you might also like

leave a comment