EUVD-2021-8711

Malicious code in bioql PyPI...

CVE-2021-21437

Agents are able to see linked Config Items without permissions, which are defined in General Catalog. This issue affects: OTRSCIsInCustomerFrontend 7.0.15 and prior versions, ITSMConfigurationManagement 7.0.24 and prior versions...

CVE-2021-21437

Agents are able to see linked Config Items without permissions, which are defined in General Catalog. This issue affects: OTRSCIsInCustomerFrontend 7.0.15 and prior versions, ITSMConfigurationManagement 7.0.24 and prior versions...

Code injection

Agents are able to see linked Config Items without permissions, which are defined in General Catalog. This issue affects: OTRSCIsInCustomerFrontend 7.0.15 and prior versions, ITSMConfigurationManagement 7.0.24 and prior versions...

CVE-2021-21437 Config Items are shown to users without permission

Agents are able to see linked Config Items without permissions, which are defined in General Catalog. This issue affects: OTRSCIsInCustomerFrontend 7.0.15 and prior versions, ITSMConfigurationManagement 7.0.24 and prior versions...

PT-2021-14509 · Unknown · Otrs Ag Otrscisincustomerfrontend +1

Name of the Vulnerable Software and Affected Versions: OTRSCIsInCustomerFrontend versions 7.0.15 and prior ITSMConfigurationManagement versions 7.0.24 and prior Description: The issue allows agents to see linked Config Items without the necessary permissions, which are defined in the General...

OTRS AG OTRSCIsInCustomerFrontend 权限许可和访问控制问题漏洞

OTRS AG OTRSCIsInCustomerFrontend is a management system from OTRS USA. It provides modern, flexible ticket and process management services. A security vulnerability exists in OTRSCIsInCustomerFrontend that originates from viewing linked configuration items, which are defined in a common director...

CVE-2021-21436

Agents are able to see and link Config Items without permissions, which are defined in General Catalog. This issue affects: OTRS AG OTRSCIsInCustomerFrontend 7.0.x version 7.0.14 and prior versions...

CVE-2021-21436

Agents are able to see and link Config Items without permissions, which are defined in General Catalog. This issue affects: OTRS AG OTRSCIsInCustomerFrontend 7.0.x version 7.0.14 and prior versions...

CVE-2021-21436

CVE-2021-21436 affects OTRS AG OTRSCIsInCustomerFrontend 7.0.x, specifically version 7.0.14 and earlier. The vulnerability allows agents to see and link Config Items without the required permissions, as defined in General Catalog. The root cause is insufficient access control for configuration it...

CVE-2021-21436 Agent is able to link customer's Config Items without permission

Agents are able to see and link Config Items without permissions, which are defined in General Catalog. This issue affects: OTRS AG OTRSCIsInCustomerFrontend 7.0.x version 7.0.14 and prior versions...