CVE-2023-7240

Publication date

2024-05-07 13:11:23

Family

OpenText

State

PUBLISHED

Description

 An improper authorization level has been detected in the login panel. It may lead to unauthenticated Server Side Request Forgery and allows to perform open services enumeration. Server makes query to provided server (Server IP/DNS field) and is triggering connection to arbitrary address.