CVE-2024-7650 in Directory Services
Summary
by MITRE • 07/10/2025
Improper Control of Generation of Code ('Code Injection') vulnerability in OpenText™ Directory Services allows Remote Code Inclusion. The vulnerability could allow access to the system via script injection.This issue affects Directory Services: 23.4.
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 07/10/2025
The CVE-2024-7650 vulnerability represents a critical code injection flaw within OpenText™ Directory Services version 23.4, classified under the CWE-94 weakness category for Improper Control of Generation of Code. This vulnerability stems from insufficient input validation and sanitization mechanisms that fail to properly control the generation of code within the application's processing pipeline. The flaw exists in the directory services component where user-supplied data is inadequately filtered before being used in dynamic code generation processes, creating an exploitable entry point for malicious actors to inject arbitrary code into the system.
The technical exploitation of this vulnerability occurs through remote code inclusion attacks where attackers can manipulate input parameters to inject malicious scripts or code sequences that are then executed within the context of the Directory Services application. This type of attack leverages the fundamental weakness in how the system handles dynamic code generation, allowing attackers to bypass normal security controls and execute unauthorized commands on the affected system. The vulnerability's remote nature means that attackers can exploit it without requiring physical access to the system, making it particularly dangerous in networked environments where directory services are commonly exposed to external traffic.
The operational impact of CVE-2024-7650 extends beyond simple code execution to potentially compromise the entire directory services infrastructure. Successful exploitation could enable attackers to gain unauthorized access to sensitive directory information, escalate privileges within the system, and potentially establish persistent backdoors for continued unauthorized access. The vulnerability affects the core functionality of OpenText™ Directory Services, which typically serves as a critical component for user authentication, authorization, and directory management within enterprise environments. This makes the impact particularly severe as directory services often contain sensitive organizational data and serve as foundational elements for other security systems.
Security professionals should immediately implement mitigations including input validation and sanitization measures, network segmentation to limit access to directory services, and monitoring for suspicious code injection attempts. The vulnerability aligns with ATT&CK technique T1059.007 for Command and Scripting Interpreter and T1566.001 for Phishing for Information, as attackers may use this vulnerability to establish initial access and then escalate their privileges. Organizations should also consider implementing web application firewalls to detect and block malicious code injection attempts, while maintaining comprehensive audit logs to track potential exploitation attempts. The remediation process should include immediate patching of the affected OpenText™ Directory Services version 23.4, along with thorough security assessments of other systems that may be vulnerable to similar code injection flaws.