Vulnerability CVE-2022-45923


Published: 2023-01-18

Description:
An issue was discovered in OpenText Content Suite Platform 22.1 (16.2.19.1803). The Common Gateway Interface (CGI) program cs.exe allows an attacker to increase/decrease an arbitrary memory address by 1 and trigger a call to a method of a vftable with a vftable pointer value chosen by the attacker.

See advisories in our WLB2 database:
Topic
Author
Date
High
OpenText Extended ECM 22.3 cs.exe Remote Code Execution
Armin Stock
22.01.2023

 References:
https://sec-consult.com/vulnerability-lab/advisory/pre-authenticated-remote-code-execution-in-csexe-opentext-server-component/

Copyright 2024, cxsecurity.com

 

Back to Top