Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
OpenText XM Fax allows hackers to access other servers
CVE-2025-8055
Summary
A security flaw in OpenText XM Fax could let an attacker secretly access other systems on the same network as the server, potentially allowing them to steal information or disrupt services. This affects version 24.2 of the software. To protect your system, update to the latest version of OpenText XM Fax.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| opentext | xm_fax | 24.2 | – |
Original title
Server-Side Request Forgery (SSRF) vulnerability in OpenText™ XM Fax allows Server Side Request Forgery.
The vulnerability could allow an attacker to
perform blind SSRF to other systems access...
Original description
Server-Side Request Forgery (SSRF) vulnerability in OpenText™ XM Fax allows Server Side Request Forgery.
The vulnerability could allow an attacker to
perform blind SSRF to other systems accessible from the XM Fax server.
This issue affects XM Fax: 24.2.
The vulnerability could allow an attacker to
perform blind SSRF to other systems accessible from the XM Fax server.
This issue affects XM Fax: 24.2.
nvd CVSS3.1
5.3
nvd CVSS4.0
5.3
Vulnerability type
CWE-918
Server-Side Request Forgery (SSRF)
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026