CVE-2024-12543 MEDIUM

CVE-2024-12543: A user enumeration and subsequent data integrity vulnerability affecting barcode functionality

Vendor Opentext
Product OpenText Content Management
Weakness CWE-841
Published April 21, 2025
Last update April 21, 2025

CVSS base score

5.9/10
Attack vector Network
Attack complexity High
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

User Enumeration and Data Integrity in Barcode functionality in OpenText Content Management versions 24.3-25.1on Windows and Linux allows a malicous authenticated attacker to potentially alter barcode attributes.

Key dates

02Disclosure timeline

April 21, 2025 CVE published
April 21, 2025 Record updated