Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2020-1774HistoryApr 28, 2020 - 2:15 p.m.
CVE-2020-1774
2020-04-2814:15:00
Debian Security Bug Tracker
security-tracker.debian.org
9
0.001 Low
EPSS
Percentile
49.3%
When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. Therefore it’s possible to mix them and to send private key to the third-party instead of public key. This issue affects ((OTRS)) Community Edition: 5.0.42 and prior versions, 6.0.27 and prior versions. OTRS: 7.0.16 and prior versions.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | otrs2 | < 6.0.28-1 | otrs2_6.0.28-1_all.deb |
| Debian | 10 | all | otrs2 | < 6.0.16-2+deb10u1 | otrs2_6.0.16-2+deb10u1_all.deb |
Related
osv
osv
CVE-2020-1774
2020-04-28 14:15:14
otrs2 - security update
2020-05-01 00:00:00
otrs2 - security update
2023-08-31 00:00:00
openvas
openvas
OTRS 5.0.x < 6.0.28, 7.0.x < 7.0.17 Information Disclosure Vulnerability
2020-04-30 00:00:00
Debian: Security Advisory (DLA-2198-1)
2020-05-02 00:00:00
Debian: Security Advisory (DLA-3551-1)
2023-08-31 00:00:00
ubuntucve
ubuntucve
CVE-2020-1774
2020-04-28 00:00:00
prion
prion
Code injection
2020-04-28 14:15:00
cvelist
cvelist
CVE-2020-1774 Information disclosure
2020-04-28 00:00:00
cve
cve
CVE-2020-1774
2020-04-28 14:15:00
nessus
nessus
Debian DLA-2198-1 : otrs2 security update
2020-05-04 00:00:00
Debian DLA-3551-1 : otrs2 - LTS security update
2023-09-06 00:00:00
debian
debian
[SECURITY] [DLA 2198-1] otrs2 security update
2020-05-01 05:45:43
[SECURITY] [DLA 3551-1] otrs2 security update
2023-08-31 00:20:56