Insufficient Access Control in OpenText Flipper
CVE-2025-8053

1LOW

Key Information:

Vendor: Opentext
Status: Flipper
Vendor: CVE Published:; 20 October 2025

What is CVE-2025-8053?

An insufficient granularity of access control vulnerability in OpenText Flipper permits low-privilege users to interact with the backend API. This weakness arises from incorrectly configured access control security levels, potentially exposing sensitive operations to unauthorized users. Administrators should review configurations to mitigate risks associated with this issue.

Affected Version(s)

Flipper 3.1.2

References

https://support.opentext.com/csm?id=ot_kb_unauthenticated...

CVSS V4

Score:

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 20, 2025
Vulnerability Reserved
Jul 22, 2025

Credit

Lockheed Martin Red Team

JSON