CVE-2024-3485

MEDIUM

Microfocus Imanager < 3.2.6 - SSRF

Title source: rule

Description

Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure.

References (1)

Scores

CVSS v3 5.3
EPSS 0.0025
EPSS Percentile 48.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

Classification

CWE
CWE-918
Status published

Affected Products (5)

microfocus/imanager < 3.2.6
microfocus/imanager
microfocus/imanager
microfocus/imanager
microfocus/imanager

Timeline

Published May 15, 2024
Tracked Since Feb 18, 2026