Incorrect Use of Privileged APIs

CVE-2022-26323

High

8.7/10

Summary

Incorrect Use of Privileged APIs vulnerability in OpenText™ Operations Bridge Manager, OpenText™ Operations Bridge Suite (Containerized), OpenText™ UCMDB ( Classic and Containerized) allows Privilege Escalation. The vulnerability could allow authenticated attackers to elevate user privileges. This issue affects Operations Bridge Manager: through 2021.05; Operations Bridge Suite (Containerized): through 2021.05; UCMDB ( Classic and Containerized): through 2021.05.

Attack Complexity: LOW
Attack Vector: NETWORK
User Interaction: NONE
Privileges Required: LOW

CWE-648 - Incorrect Use of Privileged APIs

The application does not conform to the API requirements for a function call that requires extra privileges. This could allow attackers to gain privileges by causing the function to be called incorrectly.

References

Advisory Timeline

Published Apr 17, 2025

Incorrect Use of Privileged APIs

CVE-2022-26323

Summary

CWE-648 - Incorrect Use of Privileged APIs

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS