Common vulnerabilities and Exposures (CVE)

Skip to main content

Required CVE Record Information

Description

Untrusted Search Path vulnerability in OpenText™ Application Lifecycle Management (ALM),Quality Center allows Code Inclusion. The vulnerability allows a user to archive a malicious DLLs on the system prior to the installation.   This issue affects Application Lifecycle Management (ALM),Quality Center: 15.00, 15.01, 15.01 P1, 15.01 P2, 15.01 P3, 15.01 P4, 15.01 P5, 15.51, 15.51 P1, 15.51 P2, 15.51 P3, 16.00, 16.01 P1.

CVSS 1 Total

Learn more
ScoreSeverityVersionVector String
5.3MEDIUM4.0CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/V:D/RE:L/U:Clear

Product Status

Learn more

Versions 13 Total

Default Status: unaffected

affected

  • affected at 15.00 
  • affected at 15.01 
  • affected at 15.01 P1 
  • affected at 15.01 P2 
  • affected at 15.01 P3 
  • affected at 15.01 P4 
  • affected at 15.01 P5 
  • affected at 15.51 
  • affected at 15.51 P1 
  • affected at 15.51 P2 
  • affected at 15.51 P3 
  • affected at 16.00 
  • affected at 16.01 P1 

Credits

  • Vaibhav Srivastava (eSecForte Technologies Pvt. Ltd.) finder

Authorized Data Publishers

Learn more