Authentication Bypass Vulnerability in OpenText Advanced Authentication
CVE-2025-8616

6.1MEDIUM

Key Information:

Vendor: Opentext
Status: Advanced Authentication
Vendor: CVE Published:; 6 August 2025

What is CVE-2025-8616?

A security flaw has been identified in OpenText Advanced Authentication that enables a malicious browser plugin to capture and replay user authentication processes. This vulnerability allows unauthorized access by bypassing the intended user verification steps, posing a significant risk to user data and application security. Affected versions include Advanced Authentication 6.5.0 and earlier, necessitating immediate attention from users and organizations utilizing this technology.

Affected Version(s)

Advanced Authentication Linux 6.5.0

References

https://staging.docs.microfocus.com/doc/42/main/advanceda...

CVSS V4

Score:

6.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2025
Vulnerability Reserved
Aug 5, 2025

Opentext

What is CVE-2025-8616?

Affected Version(s)

References

CVSS V4

Timeline