PT-2021-14507 · Otrs Ag +1 · Otrs +1

Name of the Vulnerable Software and Affected Versions: OTRS AG OTRS versions 7.0.x through 7.0.23 OTRS AG OTRS versions 8.0.x through 8.0.10 Description: The issue concerns the exposure of Article Bcc fields and agent personal information when a customer prints a ticket in PDF format via an...

Quadbase Systems EspressReport ES Cross-Site Request Forgery Vulnerability

Quadbase Systems EspressReport ES ERES is a centralized business intelligence reporting solution from Quadbase Systems, USA. A cross-site request forgery vulnerability in the admin panel in Quadbase Systems ERES v7.0 update 7 can be exploited by an attacker to send an unintended request to the...

OpenJDK: Missing endpoint identification algorithm check during TLS session resumption (JSSE, 8202613)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JSSE. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit vulnerability allows unauthenticated attacker with...