OpenText software is known for its abilities in enterprise content management (ECM), but a recent security issue reveals it may have serious flaws in security. The vendor disclosed that OpenText software has critical flaws that could enable remote code execution on vulnerable systems. The security issue affects thousands of devices running its Enterprise Connect and Enterprise Mobile Connect products.
OpenText issued a security advisory warning customers about the severity of the threats posed by these critical Home Office Digital Security (HODS) vulnerabilities. The advisory said that affected systems could allow an attacker to execute arbitrary code on the vulnerable device. This could allow an attacker to gain full access to the system and steal confidential information or take over the entire system.
OpenText is a Canadian software company and is the provider of Enterprise Content Management software applications. It provides cloud-based ECM services and on-premises software solutions for organizations to manage and store information. The vendor’s products are widely used in the healthcare, government, education and financial industries.
OpenText has addressed the vulnerability with a patch update and released recommendations on how to apply the patch and how to address the vulnerability. The vendor urges customers to update their systems with the patch to protect against the potential of a malicious attack.
It is important to take OpenText’s critical errors seriously and to update all vulnerable systems with the patch as soon as possible. OpenText’s security advisory and the patched version of its Enterprise Connect and Enterprise Mobile Connect applications can be accessed through its website. Taking the necessary steps to safeguard one’s network and systems should be a priority for all users who use OpenText products.
This Cyber News was published on securityaffairs.com. Publication date: Mon, 23 Jan 2023 12:11:03 +0000