Lucene search

K
cvelistMitreCVELIST:CVE-2013-4088
HistoryFeb 21, 2020 - 3:48 p.m.

CVE-2013-4088

2020-02-2115:48:13
mitre
www.cve.org
2

6.4 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.5%

Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.21, 3.1.x before 3.1.17, and 3.2.x before 3.2.8 does not properly restrict tickets, which allows remote attackers with a valid agent login to read restricted tickets via a crafted URL involving the ticket split mechanism.

6.4 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.5%