CVE 9.3 CRITICAL

CVE-2025-15610_CVE-2025-15610

April 15, 2026 invoker category_cve
9.3 / 10
CRITICAL
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Deserialization of untrusted data vulnerability in OpenText, Inc RightFax on Windows, 64 bit, 32 bit allows Object Injection.This issue affects RightFax: through 25.4.

AI Analysis

Deserialization of untrusted data vulnerability allowing Object Injection

Basic Information

ID CVE-2025-15610
Source OpenText
Published Apr 15, 2026 at 16:31

Affected Product

Vendor OpenText, Inc
Product RightFax
Version 16.6
Affected Versions OpenText, Inc RightFax 16.6
OpenText, Inc RightFax 20.2
OpenText, Inc RightFax 21.2
OpenText, Inc RightFax 22.2
OpenText, Inc RightFax 23.4
OpenText, Inc RightFax 24.4
OpenText, Inc RightFax 25.4

CWE Classification

CWE-502

AI Assessment

AI Score 9.3 / 10
AI Severity Critical
Vendor OpenText, Inc
Product RightFax
Version 16.6, 20.2, 21.2, 22.2, 23.4, 24.4, 25.4

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.