CVE-2021-22501

Summary

Improper Restriction of XML External Entity Reference vulnerability in OpenText™ Operations Bridge Manager allows Input Data Manipulation. 

The vulnerability could be exploited to confidential information

This issue affects Operations Bridge Manager: 2017.05, 2017.11, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10.

Affected Software

VendorProductVersion RangeStatus
OpenText™Operations Bridge Manager2017.05affected
OpenText™Operations Bridge Manager2017.11affected
OpenText™Operations Bridge Manager2018.05affected
OpenText™Operations Bridge Manager2018.11affected
OpenText™Operations Bridge Manager2019.05affected
OpenText™Operations Bridge Manager2019.11affected
OpenText™Operations Bridge Manager2020.05affected
OpenText™Operations Bridge Manager2020.10affected

Weaknesses

  • CWE-611: CWE-611 Improper Restriction of XML External Entity Reference

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References