CNNVD-202510-2576 Information

CNNVD ID

CNNVD-202510-2576

Related CVE

CVE-2025-8053

• CNNVD Published: 2025-10-20

Description (Chinese)

OpenText Flipper是加拿大OpenText公司的一个供应商自助提交发票的门户扩展包。 OpenText Flipper 3.1.2版本存在安全漏洞，该漏洞源于访问控制粒度不足，可能导致低权限用户与后端API交互。

Description (English)

OpenText Flopper is a portal extension for the self-service submission of invoices by a supplier from OpenText Canada. OpenText Flipper 3.1.2 has a security loophole, which stems from the lack of access control particles, which may result in low-permit users interacting with the back-end API.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

OpenText

Published

2025-10-20

Last Modified

2026-02-24

References

https://support.opentext.com/csm?id=ot_kb_unauthenticated&sysparm_article=KB0850532 https://access.redhat.com/security/cve/cve-2025-8053