CVE-2018-7194

2018-03-2717:29:00

Google

osv.dev

7.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

Integer format vulnerability in the ticket number generator in Enhancesoft osTicket before 1.10.2 allows remote attackers to cause a denial-of-service (preventing the creation of new tickets) via a large number of digits in the ticket number format setting.

CPENameOperatorVersion
osticketeq1.8.1-dpr
osticketeq1.8.1.1
osticketeq1.10.1
osticketeq1.9.1
osticketeq1.8.2-dpr
osticketeq1.9.7
osticketeq1.9.3
osticketeq1.9.11
osticketeq1.10
osticketeq1.9.5

Name	Operator	Version
osticket	eq	1.8.1-dpr
osticket	eq	1.8.1.1
osticket	eq	1.10.1
osticket	eq	1.9.1
osticket	eq	1.8.2-dpr
osticket	eq	1.9.7
osticket	eq	1.9.3
osticket	eq	1.9.11
osticket	eq	1.10
osticket	eq	1.9.5