7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
69.6%
OTRS provided by the OTRS Project is a ticket management system. OTRS contains an OS command injection vulnerability.
An arbitrary OS command may be executed with the privileges of OTRS on the server where it is installed.
Update the software
Update to the latest version according to the information provided by the developer.