Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
OpenText Directory Services can display fake information to users
CVE-2026-1658
Summary
A security issue in OpenText Directory Services could allow hackers to trick users by displaying manipulated text in the application. This affects versions 20.4.1 through 25.2. To stay secure, update to the latest version or patch available for your Directory Services.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| opentext | directory_services | > 20.4.1 , <= 25.2 | – |
Original title
User Interface (UI) Misrepresentation of Critical Information vulnerability in OpenText™ Directory Services allows Cache Poisoning.
The vulnerability could be exploited by a bad actor to inject m...
Original description
User Interface (UI) Misrepresentation of Critical Information vulnerability in OpenText™ Directory Services allows Cache Poisoning.
The vulnerability could be exploited by a bad actor to inject manipulated text into the OpenText application, potentially misleading users.
This issue affects Directory Services: from 20.4.1 through 25.2.
The vulnerability could be exploited by a bad actor to inject manipulated text into the OpenText application, potentially misleading users.
This issue affects Directory Services: from 20.4.1 through 25.2.
nvd CVSS3.1
5.3
nvd CVSS4.0
5.3
Vulnerability type
CWE-451
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026