Insufficient Access Control in Opentext Flipper
CVE-2025-8049

2.3LOW

Key Information:

Vendor: Opentext
Status: Flipper
Vendor: CVE Published:; 20 October 2025

What is CVE-2025-8049?

A vulnerability exists in Opentext Flipper that stems from inadequate granularity of access control settings. This flaw may allow users with low privileges to exploit misconfigured access control security levels, leading to potentially unauthorized privilege escalation within the application. It is important for users and administrators of Flipper 3.1.2 to assess their configuration and apply necessary security measures to protect against unauthorized access.

Affected Version(s)

Flipper 3.1.2

References

https://support.opentext.com/csm?id=ot_kb_unauthenticated...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Timeline

Vulnerability published
Oct 20, 2025
Vulnerability Reserved
Jul 22, 2025

Credit

Lockheed Martin Red Team

JSON