Possible Insertion of Sensitive Information into Log File Vulnerability Discovered in OpenText Identity Manager REST Driver
CVE-2022-26322

7.5HIGH

Key Information:

Vendor: Opentext
Status: Identity Manager Rest Driver 1.1.2.0200
Vendor: CVE Published:; 12 September 2024

Summary

A vulnerability in the OpenText Identity Manager REST Driver allows the potential insertion of sensitive information into log files. This issue can lead to unintentional exposure of sensitive data, thereby increasing the risk of data breaches. Targeted versions prior to 1.1.2.0200 are impacted, highlighting the need for timely updates and monitoring of log file contents to prevent information leakage.

Affected Version(s)

Identity Manager REST Driver 1.1.2.0200 Windows 1.0.0.0000 <= 1.1.2.0200

References

https://www.netiq.com/documentation/identity-manager-48-d...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 12, 2024
Vulnerability Reserved
Feb 28, 2022