Improper Input Validation vulnerability in OpenText Self... · CVE-2025-5808 · GitHub Advisory Database · GitHub

Improper Input Validation vulnerability in OpenText Self...

High severity Unreviewed Published Aug 29, 2025 to the GitHub Advisory Database

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Authentication Bypass.This issue affects Self Service Password Reset from before 4.8 patch 3.

References

Published by the National Vulnerability Database

Aug 29, 2025

Published to the GitHub Advisory Database Aug 29, 2025

Severity

High

/ 10

CVSS v4 base metrics

Exploitability Metrics

Attack Vector Network

Attack Complexity Low

Attack Requirements Present

Privileges Required Low

User interaction Active

Vulnerable System Impact Metrics

Confidentiality High

Integrity High

Availability Low

Subsequent System Impact Metrics

Confidentiality None

Integrity None

Availability None

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X