OpenText Exceed OnDemand Vulnerability in Bidirectional Authentication
CVE-2013-6806
Currently unrated
Summary
OpenText Exceed OnDemand version 8 is susceptible to an authentication bypass vulnerability that enables man-in-the-middle attackers to circumvent bidirectional authentication. By crafting a specific response string, attackers can downgrade the authentication process to a less secure method, causing sensitive information, including user credentials, to be transmitted in plaintext. This vulnerability poses significant risks as it allows unauthorized access and potential exploitation of confidential data.
References
Timeline
Vulnerability published
Vulnerability Reserved