Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-16664

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Code injection exists in Kernel/System/Spelling.pm in Open Ticket Request System OTRS 5 before 5.0.24, 4 before 4.0.26, and 3.3 before 3.3.20. In the agent...

8.8CVSS7.8AI score0.02492EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2017/11/27 12:0 a.m.34 views

openSUSE Security Update : otrs (openSUSE-2017-1291)

This update for otrs fixes the following security issues : - CVE-2017-15864: Remote authenticated attackers could have caused otrs to disclose configuration information, including database credentials boo1068677, OSA-2017-06 - CVE-2017-16664: Remote authenticated attackers could have caused the...

8.8CVSS8AI score0.02492EPSS
Exploits0References4
Debian
Debianadded 2017/11/23 10:9 p.m.20 views

[SECURITY] [DSA 4047-1] otrs2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4047-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 23, 2017 https://www.debian.org/security/faq -...

8.8CVSS9.7AI score0.02492EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linuxadded 2017/11/23 6:9 p.m.233 views

Security update for otrs (important)

This update for otrs fixes the following security issues: - CVE-2017-15864: Remote authenticated attackers could have caused otrs to disclose configuration information, including database credentials boo1068677, OSA-2017-06 - CVE-2017-16664: Remote authenticated attackers could have caused the...

5.5AI score0.02492EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2017/11/21 2:29 p.m.29 views

CVE-2017-16664

Code injection exists in Kernel/System/Spelling.pm in Open Ticket Request System OTRS 5 before 5.0.24, 4 before 4.0.26, and 3.3 before 3.3.20. In the agent interface, an authenticated remote attacker can execute shell commands as the webserver user via URL manipulation...

8.8CVSS7.4AI score0.02492EPSS
Exploits0References2
OSV
OSVadded 2017/11/21 2:29 p.m.23 views

CVE-2017-16664

Code injection exists in Kernel/System/Spelling.pm in Open Ticket Request System OTRS 5 before 5.0.24, 4 before 4.0.26, and 3.3 before 3.3.20. In the agent interface, an authenticated remote attacker can execute shell commands as the webserver user via URL manipulation...

8.8CVSS9AI score
Exploits0References3
CVE
CVEadded 2017/11/21 2:0 p.m.78 views

CVE-2017-16664

CVE-2017-16664 affects the Open Ticket Request System (OTRS). The flaw is a code injection in Kernel/System/Spelling.pm that allows an authenticated remote attacker to execute shell commands as the webserver user via URL manipulation. Affected versions are OTRS 5 before 5.0.24, 4 before 4.0.26, a...

8.8CVSS8.8AI score0.02492EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2017/11/21 2:0 p.m.16 views

CVE-2017-16664

Code injection exists in Kernel/System/Spelling.pm in Open Ticket Request System OTRS 5 before 5.0.24, 4 before 4.0.26, and 3.3 before 3.3.20. In the agent interface, an authenticated remote attacker can execute shell commands as the webserver user via URL manipulation...

8.8CVSS9.1AI score0.02492EPSS
Exploits0
Rows per page
Query Builder