The OpenText enterprise content management (ECM) system is affected by multiple vulnerabilities, including a critical RCE.
Armin Stock (Atos), researcher at cybersecurity firm Sec Consult, discovered multiple vulnerabilities in the OpenText enterprise content management (ECM) product.
OpenText Extended ECM is an enterprise CMS platform that manages the information lifecycle by integrating with leading enterprise applications, such as SAP, Microsoft 365, Salesforce and SAP SuccessFactors.
The list of vulnerabilities discovered by the experts includes:
The advisories for the high-severity vulnerabilities includes Proof-of-concept (PoC) code.
The expert reported the issues to OpenText in October 2022 which addressed it this month with the release of version 22.4.
|[adrotate banner=”9″]||[adrotate banner=”12″]|
(SecurityAffairs – hacking, ECM)