Primary

Context

OpenText Secure Content Manager Uncontrolled Search Path Vulnerability Allowing DLL Side-Loading

Vulnerability

A vulnerability allowing insecure dynamic-link library (DLL) loading has been identified in OpenText Secure Content Manager versions 23.4 and earlier on Windows. This uncontrolled search path element vulnerability can be exploited by end-users to execute malicious code within the trusted context of the thick-client application.

Impact

Exploitation of this vulnerability could lead to the execution of malicious code in the trusted context of the application.

Remediation

Users can apply one of the following patches, depending on their deployed version: Secure Content Manager 23.4 Patch 3, Secure Content Manager 23.4 Patch 1 HF 7, or Secure Content Manager 23.4 Patch 2 HF 1.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenText Secure Content Manager Uncontrolled Search Path Vulnerability Allowing DLL Side-Loading

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating