CVE-2025-2236

Vulnerability Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive information while managing and configuring of the external services. This issue affects Advanced Authentication versions before 6.5.

Related Weaknesses (CWE)

CWE-497

References

https://portal.microfocus.com/s/article/KM000039947

FAQ

What is CVE-2025-2236?

CVE-2025-2236 is a documented vulnerability. Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could reveal sensitive in...

How severe is CVE-2025-2236?

CVSS scoring is not yet available for CVE-2025-2236. Check NVD for updates.

Is there a patch for CVE-2025-2236?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.