CVE-2024-3485
MEDIUMOpenText iManager 3.0-3.2.6 - Server-Side Request Forgery
Title source: llmDescription
Server Side Request Forgery vulnerability has been discovered in OpenText™ iManager 3.2.6.0200. This could lead to senstive information disclosure.
References (1)
Core 1
Scores
CVSS v3
5.3
EPSS
0.0025
EPSS Percentile
48.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-918
Status
published
Products (2)
microfocus/imanager
3.2.6 (4 CPE variants)
microfocus/imanager
3.0 - 3.2.6
Published
May 15, 2024
Tracked Since
Feb 18, 2026