Unauthenticated File Upload Vulnerability
CVE-2024-3488
5.6MEDIUM
Summary
File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The vulnerability could allow ant attacker to upload a file without authentication.
Affected Version(s)
iManager Windows 3.0.0 <= 3.2.6.0300
References
CVSS V3.1
Score:
5.6
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Blaine Herro (Yahoo! Inc. VRT)