PT-2025-37183 · Opentext · Opentext Content Management
Armin Stock
·
Published
2025-09-11
·
Updated
2025-09-11
·
CVE-2025-8716
CVSS v4.0
5.8
Medium
| Vector | AV:N/AC:H/AT:P/PR:L/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N |
In Content Management versions 20.4- 25.3 authenticated attackers may exploit a complex cache poisoning technique to download unprotected files from the server if the filenames are known.
Fix
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opentext Content Management