Unauthenticated Access to AppBuilder Configuration Files
CVE-2023-4553

5.3MEDIUM

Key Information:

What is CVE-2023-4553?

Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files.

AppBuilder configuration files are viewable by unauthenticated users.

This issue affects AppBuilder: from 21.2 before 23.2.

AppBuilder Windows 21.2 < 23.2

AppBuilder Windows 23.2

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

George Mathias