Privilege Escalation Vulnerability in OpenText Operations Bridge and UCMDB Products
CVE-2022-26323
8.7HIGH
Key Information:
- Vendor
- Opentext™
- Status
- Operations Bridge Manager
- Operations Bridge Suite (containerized)
- Ucmdb ( Classic And Containerized)
- Vendor
- CVE Published:
- 17 April 2025
Summary
An incorrect use of privileged APIs in OpenText Operations Bridge Manager, Operations Bridge Suite (Containerized), and UCMDB (both Classic and Containerized) allows authenticated attackers to escalate their privileges. This vulnerability could enable a user to gain higher-level access improperly, which may lead to unauthorized actions within the affected systems. Users should be vigilant about updates and apply necessary patches to secure their environments.
Affected Version(s)
Operations Bridge Manager 0 <= 2021.05
Operations Bridge Suite (Containerized) 0 <= 2021.05
UCMDB ( Classic and Containerized) 0 <= 2021.05
References
CVSS V4
Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved