Cache Poisoning Vulnerability in OpenText Content Management Software
CVE-2025-8716

5.8MEDIUM

Key Information:

Vendor: Opentext
Status: Opentext Content Management
Vendor: CVE Published:; 11 September 2025

What is CVE-2025-8716?

Authenticated attackers can exploit a sophisticated cache poisoning vulnerability in OpenText Content Management versions 20.4 to 25.3. By manipulating cache mechanisms, they can potentially access and download unprotected files from the server, provided they know the filenames. This vulnerability highlights the importance of securing file access to prevent unauthorized data exposure.

Affected Version(s)

OpenText Content Management Windows 20.4-25.3

References

https://support.opentext.com/csm?id=ot_kb_unauthenticated...

CVSS V4

Score:

5.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2025
Vulnerability Reserved
Aug 7, 2025

Credit

Armin Stock