Back to search
CVE-2026-2123
Published: Mar 31, 2026
Modified: Mar 31, 2026
PUBLISHED
Description
A security audit identified a privilege escalation vulnerability in Operations Agent(<=OA 12.29) on Windows. Under specific conditions Operations Agent may run executables from specific writeable locations.Thanks to Manuel Rickli & Philippe Leiser of Oneconsult AG for reporting this vulnerability
| Vendor | Product | Versions |
|---|---|---|
OpenText | Operations Agent | affected OA 12.22 - <= OA 12.29 |
Weaknesses (CWE)
References
https://portal.microfocus.com/s/article/KM000046068
customer-entitlement
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now