Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-7281HistoryOct 03, 2022 - 4:13 p.m.
CVE-2008-7281
2022-10-0316:13:52
Debian Security Bug Tracker
security-tracker.debian.org
8
otrs
email
bcc
security
unix
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
57.0%
Open Ticket Request System (OTRS) before 2.2.7 sends e-mail containing a Bcc header field that lists the Blind Carbon Copy recipients, which allows remote attackers to obtain potentially sensitive e-mail address information by reading this field.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | otrs2 | < 2.2.7-1 | otrs2_2.2.7-1_all.deb |
Related
prion
prion
Design/Logic Flaw
2011-03-18 16:55:00
nvd
nvd
CVE-2008-7281
2011-03-18 16:55:01
cvelist
cvelist
CVE-2008-7281
2022-10-03 16:13:52
ubuntucve
ubuntucve
CVE-2008-7281
2011-03-18 00:00:00
cve
cve
CVE-2008-7281
2022-10-03 16:13:52
openvas
openvas
OTRS < 2.2.7 Email Multiple Vulnerabilities
2013-09-17 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
57.0%
Related for DEBIANCVE:CVE-2008-7281