CVE-2023-4964
Severity CVSS v4.0:
Pending analysis
Type:
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
Publication date:
30/10/2023
Last modified:
08/11/2023
Description
Potential open redirect vulnerability<br />
in opentext Service Management Automation X<br />
(SMAX) versions 2020.05, 2020.08,<br />
2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11 and opentext Asset<br />
Management X (AMX) versions 2021.08, 2021.11, 2022.05, 2022.11. The<br />
vulnerability could allow attackers to redirect a user to<br />
malicious websites.<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
Impact
Base Score 3.x
6.10
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:microfocus:asset_management_x:2021.08:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:asset_management_x:2021.11:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:asset_management_x:2022.05:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:asset_management_x:2022.11:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2020.05:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2020.08:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2020.11:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2021.02:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2021.05:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2021.08:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2021.11:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2022.05:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microfocus:service_management_automation_x:2022.11:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page