Primary

Context

OpenText Operations Agent Privilege Escalation Vulnerability

Vulnerability

A privilege escalation vulnerability has been identified in OpenText Operations Agent versions through 12.29 on Windows. Under certain conditions, the agent may execute files from specific writable directories. This vulnerability allows a low-privileged user to execute code with SYSTEM-level rights on the local machine, requiring local system access.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution with elevated privileges on the local system.

Remediation

A hotfix is available for download from the OpenText Marketplace. Instructions for installation can be found in the readme.txt file included with the hotfix. The hotfix is available for Operations Agent versions 12.24 through 12.29.

Added: Mar 31, 2026, 7:09 PM

Updated: Mar 31, 2026, 7:09 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

0.0

relevance

5.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.9

remediation

0.0

relevance

5.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenText Operations Agent Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating