ByteOS Network

CVE Vulnerability Details :

CVE-2025-3476

PUBLISHED

More Info Official Page

Assigner-OpenText

Assigner Org ID-f81092c5-7f14-476d-80dc-24857f90be84

Published At-07 May, 2025 | 18:42

Updated At-07 May, 2025 | 19:59

▼CVE Numbering Authority (CNA)

Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allows privilege escalation by authenticated users.This issue affects Operations Bridge Manager: 2023.05, 23.4, 24.2, 24.4.

Affected Products

Vendor

Open Text Corporation

Product

Operations Bridge Manager

Default Status

unaffected

Versions

Affected

2023.05
23.4
24.2
24.4

Problem Types

Type	CWE ID	Description
CWE	CWE-863	CWE-863 Incorrect Authorization

Type: CWE

CWE ID: CWE-863

Description: CWE-863 Incorrect Authorization

Metrics

Version	Base score	Base severity	Vector
4.0	9.4	CRITICAL	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:Y/R:U/V:C/RE:H/U:Red

Version: 4.0

Base score: 9.4

Base severity: CRITICAL

Vector:

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/AU:Y/R:U/V:C/RE:H/U:Red

Impacts

CAPEC ID	Description
CAPEC-233	CAPEC-233 Privilege Escalation

CAPEC ID: CAPEC-233

Description: CAPEC-233 Privilege Escalation

Solutions

Operations Bridge Manager: Security Update for CVE-2025-3476 https://portal.microfocus.com/s/article/KM000040406

References

Hyperlink	Resource
https://portal.microfocus.com/s/article/KM000040406?language=en_US	N/A

Hyperlink: https://portal.microfocus.com/s/article/KM000040406?language=en_US

Resource: N/A

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References