Privilege Escalation Vulnerability in OpenText Operations Bridge and UCMDB Products
CVE-2022-26323

8.7HIGH

Key Information:

Vendor: Opentext™
Status: Operations Bridge Manager; Operations Bridge Suite (containerized); Ucmdb ( Classic And Containerized)
Vendor: CVE Published:; 17 April 2025

What is CVE-2022-26323?

An incorrect use of privileged APIs in OpenText Operations Bridge Manager, Operations Bridge Suite (Containerized), and UCMDB (both Classic and Containerized) allows authenticated attackers to escalate their privileges. This vulnerability could enable a user to gain higher-level access improperly, which may lead to unauthorized actions within the affected systems. Users should be vigilant about updates and apply necessary patches to secure their environments.

Affected Version(s)

Operations Bridge Manager 0 <= 2021.05

Operations Bridge Suite (Containerized) 0 <= 2021.05

UCMDB ( Classic and Containerized) 0 <= 2021.05

References

https://portal.microfocus.com/s/article/KM000039040?langu...

https://portal.microfocus.com/s/article/KM000039044?langu...

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2025
Vulnerability Reserved
Feb 28, 2022

Opentext™

What is CVE-2022-26323?

Affected Version(s)

References

CVSS V4

Timeline