12 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-1765
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and...
Recommended update for otrs (moderate)
openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:1509-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...
openSUSE Security Update : otrs (openSUSE-2020-1475)
Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...
openSUSE Security Update : otrs (openSUSE-2020-551)
Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...
Recommended update for otrs (moderate)
openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:0551-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...
Debian: Security Advisory (DLA-2079-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-2079-1 : otrs2 security update
Several vulnerabilities have been discovered in the otrs2 package that may lead to unauthorized access, remote code execution and spoofing. CVE-2020-1765 An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward,...
[SECURITY] [DLA 2079-1] otrs2 security update
Package : otrs2 Version : 3.3.18-1+deb8u13 CVE ID : CVE-2020-1765 CVE-2020-1766 CVE-2020-1767 Several vulnerabilities have been discovered in the otrs2 package that may lead to unauthorized access, remote code execution and spoofing. CVE-2020-1765 An improper control of parameters allows the...
CVE-2020-1765
An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue affects: OTRS Community Edition 5.0.x version 5.0.39 and prior versions; 6.0.x version 6.0.24 and...
CVE-2020-1765
An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue affects: OTRS Community Edition 5.0.x version 5.0.39 and prior versions; 6.0.x version 6.0.24 and...
CVE-2020-1765
CVE-2020-1765 affects OTRS Open Source Ticket Request System. An improper control of parameters allows spoofing of the From fields in AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. Public advisories describe affected product lines: OTRS Community Edition 5...
CVE-2020-1765 Spoofing of From field in several screens
An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce and AgentTicketEmailOutbound. This issue affects: OTRS Community Edition 5.0.x version 5.0.39 and prior versions; 6.0.x version 6.0.24 and...