CVE-2022-45925

An issue was discovered in OpenText Content Suite Platform 22.1 (16.2.19.1803). The action xmlexport accepts the parameter requestContext. If this parameter is present, the response includes most of the HTTP headers sent to the server and some of the CGI variables like remote_adde and server_name, which is an information disclosure.
Configurations

Configuration 1 (hide)

cpe:2.3:a:opentext:opentext_extended_ecm:*:*:*:*:*:*:*:*

History

04 Apr 2025, 18:15

Type Values Removed Values Added
CWE CWE-200

21 Nov 2024, 07:29

Type Values Removed Values Added
New CVE

Information

Published : 2023-01-18 21:15

Updated : 2025-04-04 18:15


NVD link : CVE-2022-45925

Mitre link : CVE-2022-45925

CVE.ORG link : CVE-2022-45925


JSON object : View

Products Affected

opentext

  • opentext_extended_ecm
CWE
NVD-CWE-noinfo CWE-200

Exposure of Sensitive Information to an Unauthorized Actor