CVE-2024-4690
Insecure usage for DocumentBuilderFactory and TransformerFactory in OpenText Application Automation Tools
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automation Tools allows DTD Injection.This issue affects OpenText Application Automation Tools: 24.1.0 and below.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/S:N/AU:Y/R:U/V:D/RE:L/U:Green
Affected products
OpenText · OpenText Application Automation ToolsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →