Absolute Path Traversal in OpenText Flipper 3.1.2
CVE-2025-8051 Published on October 20, 2025
Path traversal validation vulnerability has been discovered in opentext Flipper.
Path Traversal vulnerability in opentext Flipper allows Absolute Path Traversal.
The vulnerability could allow a user to access files hosted on the server.
This issue affects Flipper: 3.1.2.
Weakness Type
Path Traversal: '.../...//'
The software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '.../...//' (doubled triple dot slash) sequences that can resolve to a location that is outside of that directory.
Products Associated with CVE-2025-8051
Want to know whenever a new CVE is published for Opentext Flipper? stack.watch will email you.
Affected Versions
opentext Flipper Version 3.1.2 is affected by CVE-2025-8051Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.