Vulners
Lucene search
CVE-2024-23790 Missing file type check in avatar picture upload
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | The vulnerability in the avatar loading function of the OTRS application allows a violator to execute arbitrary code. | 12 Mar 202400:00 | – | bdu_fstec |
 | CVE-2024-23790 | 29 Jan 202411:26 | – | circl |
 | OTRS Security Vulnerabilities | 29 Jan 202400:00 | – | cnnvd |
 | CVE-2024-23790 | 29 Jan 202409:21 | – | cve |
 | EUVD-2024-21243 | 3 Oct 202520:07 | – | euvd |
 | CVE-2024-23790 | 29 Jan 202410:15 | – | nvd |
 | UBUNTU-CVE-2024-23790 | 29 Jan 202410:15 | – | osv |
 | Input validation | 29 Jan 202410:15 | – | prion |
 | PT-2024-2036 · Otrs · Otrs | 29 Jan 202400:00 | – | ptsecurity |
 | CVE-2024-23790 | 29 Jan 202410:15 | – | ubuntucve |
10
[
{
"defaultStatus": "unknown",
"modules": [
"Agent Interface",
"External Interface"
],
"product": "OTRS",
"vendor": "OTRS AG",
"versions": [
{
"lessThanOrEqual": "8.0.37",
"status": "affected",
"version": "8.0.x",
"versionType": "Patch"
},
{
"lessThanOrEqual": "2023.1.1",
"status": "affected",
"version": "2023",
"versionType": "Patch"
},
{
"lessThanOrEqual": "7.0.48",
"status": "affected",
"version": "7.0.x",
"versionType": "Patch"
}
]
}
]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
29 Jan 2024 09:21Current
9.7High risk
Vulners AI Score9.7
CVSS 3.13.5
EPSS0.00253