0.001 Low
EPSS
Percentile
48.4%
The OTRS Project reports:
An attacker with a valid agent login could manipulate URLs in the ticket split mechanism to see contents of tickets and they are not permitted to see.
www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2013-03/