Opentext · Opentext Solutions Business Manager · CVE-2024-7085
**Name of the Vulnerable Software and Affected Versions**
OpenText Solutions Business Manager (SBM) versions prior to 12.2.1
**Description**
The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting (XSS). This could lead to the exposure of private information to an unauthorized actor. The vulnerability allows for Stored XSS.
**Recommendations**
For versions prior to 12.2.1, update to a version that contains a fix for this issue.
As a temporary workaround, consider restricting access to sensitive information and implementing additional security measures to minimize the risk of exploitation.