CVE-2025-8052 Opentext — Exploit & Vulnerability Details HIGH

CVE-2025-8052

HIGH CVSS 3.1: 8.8 EPSS 0.03%

Parameter	Value
CVSS	8.8 (HIGH)
Type	CWE-564
Vendor	Opentext
Public PoC	No

SQL Injection vulnerability in opentext Flipper allows SQL Injection. The vulnerability could allow a low privilege user to interact with the database in unintended ways and extract data by interacting with the HQL processor. This issue affects Flipper: 3.1.2.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-564

Vulnerable Products 1

Configuration	From (including)	Up to (excluding)
Opentext Flipper cpe:2.3:a:opentext:flipper:3.1.2:::::::*	—	—

References 1

https://support.opentext.com/csm?id=ot_kb_unauthenticated&sysparm_article=KB085…

security@opentext.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-3278

Opentext

7.4

CVE-2025-12455

Opentext

5.1

CVE-2025-12454

Opentext

5.1

CVE-2025-12453

Opentext

5.1

CVE-2025-8053

Opentext

9.1

Menu

CVE-2025-8052

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products 1

References 1

Related Vulnerabilities

CVE-2026-3278

CVE-2025-12455

CVE-2025-12454

CVE-2025-12453

CVE-2025-8053

CVE Details

Editor's Choice

Menu

CVE-2025-8052

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products 1

References 1

Related Vulnerabilities

CVE-2026-3278

CVE-2025-12455

CVE-2025-12454

CVE-2025-12453

CVE-2025-8053

CVE Details

Editor's Choice

Stay informed on cybersecurity