Vulnerability Description
Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management (Extended ECM) allows Parameter Injection. A bad actor with the required OpenText Content Management privileges (not root) could expose the vulnerability to carry out a remote code execution attack on the target system. This issue affects Content Management (Extended ECM): from 10.0 through 24.4 with WebReports module installed and enabled.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2024-8125?
CVE-2024-8125 is a documented vulnerability. Improper Validation of Specified Type of Input vulnerability in OpenText™ Content Management (Extended ECM) allows Parameter Injection. A bad actor with the required OpenText Content Management priv...
How severe is CVE-2024-8125?
CVSS scoring is not yet available for CVE-2024-8125. Check NVD for updates.
Is there a patch for CVE-2024-8125?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.