CVE-2024-12799

OpenText Identity Manager <4.8.7.0102, 4.9.0.0 - Privilege Escalation

Title source: llm

Description

Insufficiently Protected Credentials vulnerability in OpenText Identity Manager Advanced Edition on Windows, Linux, 64 bit allows Privilege Abuse. This vulnerability could allow an authenticated user to obtain higher privileged user’s sensitive information via crafted payload. This issue affects Identity Manager Advanced Edition: from 4.8.0.0 through 4.8.7.0102, 4.9.0.0.

References (1)

[Various Sources] https://portal.microfocus.com/s/article/KM000037455

Scores

EPSS 0.0013

EPSS Percentile 32.0%

Classification

CWE

CWE-522

Status draft

Timeline

Published Mar 05, 2025

Tracked Since Feb 18, 2026