CVE-2026-2123 in Operations Agentinfo

Summary

A security audit identified a privilege escalation
vulnerability in Operations Agent(<=OA 12.29) on Windows. Under specific conditions
Operations Agent may run executables from specific writeable locations.Thanks to Manuel Rickli & Philippe Leiser of
Oneconsult AG for reporting this vulnerability

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsible

OpenText

Reservation

02/06/2026

Disclosure

03/31/2026

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
354462	OpenText Operations Agent insufficient permissions or privileges	280	Not defined	Not defined	CVE-2026-2123

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Want to know what is going to be exploited?

We predict KEV entries!