HIGHCVE-2026-3266Published Modified CNA OpenText
CVE-2026-3266: Improper access control vulnerability has been discovered in OpenText™ Filr.
Missing Authorization vulnerability in OpenText™ Filr allows Authentication Bypass. The vulnerability could allow unauthenticated users to get XSRF token and do RPC with carefully crafted programs. This issue affects Filr: through 25.1.2.
Metrics
- CVSS v4.0
- 8.3
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
Affected packages
- OpenText™ / Filr≤ 25.1.2
CVSS Vector
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:H/VA:L/SC:L/SI:L/SA:L/S:P/AU:Y/R:I/V:D/RE:M/U:RedReferences