CVE-2023-32260
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Summary
Misinterpretation of Input vulnerability in OpenText™ Service Management Automation X (SMAX), OpenText™ Asset Management X (AMX), and OpenText™ Hybrid Cloud Management X (HCMX) products. The vulnerability could allow Input data manipulation.This issue affects Service Management Automation X (SMAX) versions: 2020.05, 2020.08, 2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11, 2023.05; Asset Management X (AMX) versions: 2021.08, 2021.11, 2022.05, 2022.11, 2023.05; and Hybrid Cloud Management X (HCMX) versions: 2020.05, 2020.08, 2020.11, 2021.02, 2021.05, 2021.08, 2021.11, 2022.05, 2022.11, 2023.05.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| OpenText™ | Service Management Automation X (SMAX) | 2020.05 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2020.08 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2020.11 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2021.02 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2021.05 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2021.08 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2021.11 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2022.05 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2022.11 | affected |
| OpenText™ | Service Management Automation X (SMAX) | 2023.05 | affected |
| OpenText™ | Asset Management X (AMX) | 2021.08 | affected |
| OpenText™ | Asset Management X (AMX) | 2021.11 | affected |
| OpenText™ | Asset Management X (AMX) | 2022.05 | affected |
| OpenText™ | Asset Management X (AMX) | 2022.11 | affected |
| OpenText™ | Asset Management X (AMX) | 2023.05 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2020.05 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2020.08 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2020.11 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2021.02 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2021.05 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2021.08 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2021.11 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2022.05 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2022.11 | affected |
| OpenText™ | Hybrid Cloud Management X (HCMX) | 2023.05 | affected |
Weaknesses
- CWE-115: CWE-115 Misinterpretation of Input
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.