CVE-2024-4690

Name of the Vulnerable Software and Affected Versions OpenText Application Automation Tools versions 24.1.0 and below

Description The issue is related to an Improper Restriction of XML External Entity Reference vulnerability, which allows DTD Injection in OpenText Application Automation Tools.

Recommendations For versions 24.1.0 and below, update to a version above 24.1.0 to resolve the issue. As a temporary workaround, consider restricting XML external entity references to prevent DTD Injection until a patch is available.