Vaibhav Srivastava

**Name of the Vulnerable Software and Affected Versions** OpenText Application Lifecycle Management (ALM), Quality Center versions 15.00 through 16.01 P1 **Description** The issue allows a user to archive malicious DLLs on the system prior to installation, enabling code inclusion via an untrusted search path. This vulnerability affects OpenText Application Lifecycle Management (ALM), Quality Center, allowing a user to include harmful code. **Recommendations** For versions 15.00 through 16.01 P1, consider disabling the ability to archive DLLs on the system prior to installation as a temporary workaround until a patch is available. Restrict access to the vulnerable search path to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.