πŸ” CVE Alert

CVE-2025-13478

UNKNOWN 0.0

Cache Misconfiguration Leading to Cross-User Data Exposure

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Cache misconfiguration vulnerability in OpenText Identity Manager on Windows, Linux allows remote authenticated users to obtain another user's session data via insecure application cache handling. This issue affects Identity Manager: 25.2(v4.10.1).

CWE CWE-522
Vendor opentext
Product identity manager
Published Mar 27, 2026
Last Updated Mar 27, 2026
Stay Ahead of the Next One

Get instant alerts for opentext identity manager

Be the first to know when new unknown vulnerabilities affecting opentext identity manager are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

OpenText / Identity Manager
25.2(v4.10.1)

References

NVD β†— CVE.org β†— EPSS Data β†—
docs.microfocus.com: https://docs.microfocus.com/doc/2159/25.2/cvesecurityfix docs.microfocus.com: https://docs.microfocus.com/doc/2159/25.2/releasenotesidentitymanager4101patch01

Credits

πŸ” TH KΓΆln