CVE-2026-1658 | THREATINT

Description

User Interface (UI) Misrepresentation of Critical Information vulnerability in OpenText™ Directory Services allows Cache Poisoning. The vulnerability could be exploited by a bad actor to inject manipulated text into the OpenText application, potentially misleading users. This issue affects Directory Services: from 20.4.1 through 25.2.

PUBLISHED Reserved 2026-01-29 | Published 2026-02-19 | Updated 2026-02-19 | Assigner OpenText

MEDIUM: 5.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:A/V:D/RE:L/U:Clear

Problem types

CWE-451 User Interface (UI) Misrepresentation of Critical Information

Product status

Default status

unaffected

20.4.1 (custom)

affected

Credits

Andrej Šimko of Accenture finder

References

support.opentext.com/...henticated&sysparm_article=KB0858517

cve.org (CVE-2026-1658)

nvd.nist.gov (CVE-2026-1658)

Download JSON