CVE-2025-8716

Medium CVSS: 5.8

In Content Management versions 20.4- 25.3 authenticated attackers may exploit a complex cache poisoning technique to download unprotected files from the server if the filenames are known.

Vendor

Product

CWE

CWE-754

Yayın Tarihi

2025-09-11 14:15:42

Güncelleme

2025-09-11 17:14:10

Source Identifier

security@opentext.com

KEV Date Added

Kategoriler

CWE-754 MEDIUM 2025

Referanslar

https://support.opentext.com/csm?id=ot_kb_unauthenticated&sysparm_article=KB0847046