Unrestricted Access Vulnerability in OpenText Privileged Access Manager
CVE-2020-11846

7.5HIGH

Key Information:

Vendor: Opentext
Status: Privileged Access Manager
Vendor: CVE Published:; 21 August 2024

What is CVE-2020-11846?

A vulnerability in OpenText Privileged Access Manager allows for improper access control due to the issuance of a token that sets a cookie, granting unrestricted access to all application resources. This issue potentially exposes sensitive information and affects versions prior to 3.7.0.1, emphasizing the need for prompt updates to mitigate the risk of unauthorized access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Privileged Access Manager Windows 3.7.0.1

References

https://www.netiq.com/documentation/privileged-account-ma...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 21, 2024
Vulnerability Reserved
Apr 16, 2020

JSON

Opentext

What is CVE-2020-11846?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.