CVE-2023-4964: Potential open redirect vulnerability in opentext SMAX and AMX product.
First published: Mon Oct 30 2023(Updated: )
Potential open redirect vulnerability in opentext Service Management Automation X (SMAX) versions 2020.05, 2020.08, 2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11 and opentext Asset Management X (AMX) versions 2021.08, 2021.11, 2022.05, 2022.11. The vulnerability could allow attackers to redirect a user to malicious websites.
Credit: security@opentext.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =2021.08 | ||
| =2021.11 | ||
| =2022.05 | ||
| =2022.11 | ||
| =2020.05 | ||
| =2020.08 | ||
| =2020.11 | ||
| =2021.02 | ||
| =2021.05 | ||
| =2021.08 | ||
| =2021.11 | ||
| =2022.05 | ||
| =2022.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this potential open redirect vulnerability in opentext SMAX and AMX product?
The vulnerability ID is CVE-2023-4964.
Which versions of opentext Service Management Automation X (SMAX) are affected by this vulnerability?
Versions 2020.05, 2020.08, 2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, and 2022.11 of opentext SMAX are affected.
Which versions of opentext Asset Management X (AMX) are affected by this vulnerability?
Versions 2021.08, 2021.11, 2022.05, and 2022.11 of opentext AMX are affected.
What is the severity of CVE-2023-4964?
The severity of CVE-2023-4964 is high with a CVSS score of 8.2.
How can I fix this potential open redirect vulnerability?
To fix this vulnerability, apply the necessary patches or updates provided by opentext.
- agent/type
- agent/first-publish-date
- agent/title
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/microfocus
- canonical/microfocus asset management x
- version/microfocus asset management x/2021.08
- version/microfocus asset management x/2021.11
- version/microfocus asset management x/2022.05
- version/microfocus asset management x/2022.11
- canonical/microfocus service management automation x
- version/microfocus service management automation x/2020.05
- version/microfocus service management automation x/2020.08
- version/microfocus service management automation x/2020.11
- version/microfocus service management automation x/2021.02
- version/microfocus service management automation x/2021.05
- version/microfocus service management automation x/2021.08
- version/microfocus service management automation x/2021.11
- version/microfocus service management automation x/2022.05
- version/microfocus service management automation x/2022.11