Vulnerability Description
Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manage existing databases can leverage them to exploit the AppBuilder server - including access to its local file system. This issue affects AppBuilder: from 21.2 before 23.2.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Opentext | Appbuilder | >= 21.2, < 23.2 |
| Linux | Linux Kernel | - |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://support.opentext.com/csm?id=ot_kb_search&kb_category=61648712db61781068cPermissions Required
- https://support.opentext.com/csm?id=ot_kb_search&kb_category=61648712db61781068cPermissions Required
FAQ
What is CVE-2023-4552?
CVE-2023-4552 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. An authenticated AppBuilder user with the ability to create or manage existing databases ca...
How severe is CVE-2023-4552?
CVE-2023-4552 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-4552?
Check the references section above for vendor advisories and patch information. Affected products include: Opentext Appbuilder, Linux Linux Kernel, Microsoft Windows.