Exposure of Sensitive Information in OpenText Advanced Authentication
CVE-2025-2236

2.1LOW

Key Information:

Vendor: Opentext
Status: Advanced Authentication
Vendor: CVE Published:; 27 May 2025

What is CVE-2025-2236?

A vulnerability in OpenText Advanced Authentication allows unauthorized access to sensitive system information during the management and configuration of external services. This flaw could potentially expose critical data, thereby increasing security risks for organizations using versions prior to 6.5. It is essential for users to assess their systems and implement necessary updates to mitigate this information elicitation risk.

Affected Version(s)

Advanced Authentication 0 < 6.5

References

https://portal.microfocus.com/s/article/KM000039947

CVSS V4

Score:

2.1

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2025
Vulnerability Reserved
Mar 11, 2025

Opentext

What is CVE-2025-2236?

Affected Version(s)

References

CVSS V4

Timeline