CNNVD-202511-2145 Information

CNNVD ID

CNNVD-202511-2145

Related CVE

CVE-2025-11884

• CNNVD Published: 2025-11-19

Description (Chinese)

OpenText UCMDB是加拿大OpenText公司的一款软件。用于生成和维护信息技术项目的配置管理数据库。 OpenText UCMDB 24.4版本存在跨站脚本漏洞，该漏洞源于网页生成期间输入中和不当，可能导致存储型跨站脚本攻击。

Description (English)

OpenText UCMDB is a software set by OpenText Canada. To generate and maintain a configuration management database for IT projects. OpenText UCMDB version 24.4 contains a cross-site script loophole, which stems from the inaccuracy of the input during the web page generation and may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

OpenText

Published

2025-11-19

Last Modified

2026-02-24

References

https://portal.microfocus.com/s/article/KM000043674?language=en_US https://access.redhat.com/security/cve/cve-2025-11884

Patch

https://portal.microfocus.com/s/article/KM000043674?language=en_US