CVE-2025-0883

Summary

Improper Neutralization of Script in an Error Message Web Page vulnerability in OpenText™ Service Manager. 

The vulnerability could reveal sensitive information retained by the browser.

This issue affects Service Manager: 9.70, 9.71, 9.72, 9.80.

Affected Software

VendorProductVersion RangeStatus
OpenText™Service Manager9.70affected
OpenText™Service Manager9.71affected
OpenText™Service Manager9.72affected
OpenText™Service Manager9.80affected

Weaknesses

  • CWE-81: CWE-81 Improper Neutralization of Script in an Error Message Web Page

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References