4 matches found
CVE-2021-36097
creationtimestamp| type| source ---|---|--- 2021-10-18 12:36:39+00:00| seen| https://t.me/cibsecurity/30669...
CVE-2021-36097
Agents are able to lock the ticket without the "Owner" permission. Once the ticket is locked, it could be moved to the queue where the agent has "rw" permissions and gain a full control. This issue affects: OTRS AG OTRS 8.0.x version: 8.0.16 and prior versions...
CVE-2021-36097
CVE-2021-36097 affects OTRS AG OTRS 8.0.x (up to 8.0.16). The issue allows agents to lock a ticket without the required Owner permission and then move it to a queue where they have rw rights, effectively granting full control. The publicly documented details come from sources including PT-2021-21...
CVE-2021-36097 Agents are able to lock the ticket without the "Owner" permission
Agents are able to lock the ticket without the "Owner" permission. Once the ticket is locked, it could be moved to the queue where the agent has "rw" permissions and gain a full control. This issue affects: OTRS AG OTRS 8.0.x version: 8.0.16 and prior versions...