5 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-16854
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Open Ticket Request System OTRS through 3.3.20, 4 through 4.0.26, 5 through 5.0.24, and 6 through 6.0.1, an attacker who is logged in as a customer can use t...
[SECURITY] [DSA 4066-1] otrs2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4066-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 17, 2017 https://www.debian.org/security/faq -...
OTRS 3.3.x < 4.0.27, 5.x < 5.0.24, 6.x < 6.0.2 Information Disclosure Vulnerability (Dec 2017)
OTRS is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if...
CVE-2017-16854
The CVE-2017-16854 issue affects Open Ticket Request System (OTRS) up to versions 3.3.20, 4.x up to 4.0.26, 5.x up to 5.0.24, and 6.x up to 6.0.1, where an authenticated customer can use the ticket search form to disclose internal article information in customer tickets. Connected advisories conf...
CVE-2017-16854
In Open Ticket Request System OTRS through 3.3.20, 4 through 4.0.26, 5 through 5.0.24, and 6 through 6.0.1, an attacker who is logged in as a customer can use the ticket search form to disclose internal article information of their customer tickets...