Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:27 a.m.10 views

CVE-2008-7277

Open Ticket Request System OTRS before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets...

6.5CVSS6.7AI score0.01467EPSS
Exploits0References1
OSV
OSV
added 2011/03/18 4:55 p.m.9 views

CVE-2008-7277

Open Ticket Request System OTRS before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets...

6.2AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2011/03/18 4:55 p.m.29 views

CVE-2008-7277

Open Ticket Request System OTRS before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets...

6.5CVSS5.9AI score0.01467EPSS
Exploits0References1
CVE
CVE
added 2011/03/18 4:0 p.m.61 views

CVE-2008-7277

Open Ticket Request System (OTRS) before 2.3.0-beta4 is vulnerable to a merge-operations permission bypass. The authorization logic checks for the rw permission rather than the configured merge permission, potentially allowing remote authenticated users to bypass intended access restrictions when...

6.5CVSS6.5AI score0.01467EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder