CVE-2024-1147

Published Mar 21, 2024

Last updated 16 days ago

CVSS critical 9.8

Overview

Description
Weak access control in OpenText PVCS Version Manager allows potential bypassing of authentication and download of files.
Source
security@opentext.com
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

security@opentext.com
CWE-287

Social media

Hype score
Not currently trending

References

Sources include official advisories and independent security research.