Home

Description

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Authentication Bypass.This issue affects Self Service Password Reset from before 4.8 patch 3.

PUBLISHED Reserved 2025-06-06 | Published 2025-08-29 | Updated 2025-08-29 | Assigner OpenText




HIGH: 7.3CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-1284 Improper Validation of Specified Quantity in Input

Product status

Default status
unaffected

4.8
affected

References

docs.microfocus.com/doc/28/4.8/scrtyimpr

cve.org (CVE-2025-5808)

nvd.nist.gov (CVE-2025-5808)

Download JSON