cvelist/2025/2xxx/CVE-2025-2236.json

{
    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
    "CVE_data_meta": {
        "ID": "CVE-2025-2236",
        "ASSIGNER": "security@opentext.com",
        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could\u00a0reveal sensitive information while managing and configuring of the external services.\n\nThis issue affects Advanced Authentication versions before 6.5."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere",
                        "cweId": "CWE-497"
                    }
                ]
            }
        ]
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "OpenText",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Advanced Authentication",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "<",
                                            "version_name": "0",
                                            "version_value": "6.5"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "references": {
        "reference_data": [
            {
                "url": "https://portal.microfocus.com/s/article/KM000039947",
                "refsource": "MISC",
                "name": "https://portal.microfocus.com/s/article/KM000039947"
            }
        ]
    },
    "generator": {
        "engine": "Vulnogram 0.2.0"
    },
    "source": {
        "discovery": "UNKNOWN"
    },
    "solution": [
        {
            "lang": "en",
            "supportingMedia": [
                {
                    "base64": false,
                    "type": "text/html",
                    "value": "<a target=\"_blank\" rel=\"nofollow\" href=\"https://portal.microfocus.com/s/article/KM000039947\">https://portal.microfocus.com/s/article/KM000039947</a>\n\n\n\n<br>"
                }
            ],
            "value": "https://portal.microfocus.com/s/article/KM000039947"
        }
    ]
}
"-Synchronized-Data." 2025-03-11 23:00:37 +00:00			`{`
"-Synchronized-Data." 2025-05-27 18:00:36 +00:00			`"data_version": "4.0",`
"-Synchronized-Data." 2025-03-11 23:00:37 +00:00			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2025-2236",`
"-Synchronized-Data." 2025-05-27 18:00:36 +00:00			`"ASSIGNER": "security@opentext.com",`
			`"STATE": "PUBLIC"`
"-Synchronized-Data." 2025-03-11 23:00:37 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2025-05-27 18:00:36 +00:00			`"value": "Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in OpenText Advanced Authentication allows Information Elicitation. The vulnerability could\u00a0reveal sensitive information while managing and configuring of the external services.\n\nThis issue affects Advanced Authentication versions before 6.5."`
			`}`
			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere",`
			`"cweId": "CWE-497"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "OpenText",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Advanced Authentication",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_affected": "<",`
			`"version_name": "0",`
			`"version_value": "6.5"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"url": "https://portal.microfocus.com/s/article/KM000039947",`
			`"refsource": "MISC",`
			`"name": "https://portal.microfocus.com/s/article/KM000039947"`
"-Synchronized-Data." 2025-03-11 23:00:37 +00:00			`}`
			`]`
"-Synchronized-Data." 2025-05-27 18:00:36 +00:00			`},`
			`"generator": {`
			`"engine": "Vulnogram 0.2.0"`
			`},`
			`"source": {`
			`"discovery": "UNKNOWN"`
			`},`
			`"solution": [`
			`{`
			`"lang": "en",`
			`"supportingMedia": [`
			`{`
			`"base64": false,`
			`"type": "text/html",`
			`"value": "<a target=\"_blank\" rel=\"nofollow\" href=\"https://portal.microfocus.com/s/article/KM000039947\">https://portal.microfocus.com/s/article/KM000039947</a>\n\n\n\n<br>"`
			`}`
			`],`
			`"value": "https://portal.microfocus.com/s/article/KM000039947"`
			`}`
			`]`
"-Synchronized-Data." 2025-03-11 23:00:37 +00:00			`}`