Man-in-the-Middle Vulnerability in OpenText Exceed OnDemand
CVE-2013-6807

Currently unrated

Key Information:

Vendor: Opentext
Status: Exceed Ondemand
Vendor: CVE Published:; 19 May 2014

What is CVE-2013-6807?

The OpenText Exceed OnDemand 8 product has a significant security flaw due to its default support for anonymous ciphers. This configuration poses a risk as it allows man-in-the-middle attackers to circumvent server certificate validation. By exploiting this vulnerability, attackers can redirect user connections and gain access to sensitive information through altered responses, potentially exposing critical data to unauthorized entities.

References

https://github.com/koto/exceed-mitm

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 19, 2014
Vulnerability Reserved
Nov 17, 2013

Opentext

What is CVE-2013-6807?

References

Timeline