Lucene search
+L

11 matches found

nessus
nessus
added 2020/09/23 12:0 a.m.48 views

openSUSE Security Update : otrs (openSUSE-2020-1475)

Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...

8.1CVSS5.9AI score0.02018EPSS
Exploits0References44
opensuse
opensuse
added 2020/09/23 12:0 a.m.67 views

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:1509-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

8.1CVSS6.5AI score0.02018EPSS
Exploits0References14
nessus
nessus
added 2020/04/28 12:0 a.m.41 views

openSUSE Security Update : otrs (openSUSE-2020-551)

Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...

8.1CVSS5.9AI score0.02018EPSS
Exploits0References44
opensuse
opensuse
added 2020/04/25 12:0 a.m.95 views

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:0551-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

8.1CVSS6.5AI score0.02018EPSS
Exploits0References14
openvas
openvas
added 2020/01/30 12:0 a.m.44 views

Debian: Security Advisory (DLA-2079-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.7AI score0.01499EPSS
Exploits0References3
nessus
nessus
added 2020/01/30 12:0 a.m.34 views

Debian DLA-2079-1 : otrs2 security update

Several vulnerabilities have been discovered in the otrs2 package that may lead to unauthorized access, remote code execution and spoofing. CVE-2020-1765 An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward,...

6.1CVSS6.5AI score0.01499EPSS
Exploits0References5
debian
debian
added 2020/01/29 12:0 p.m.41 views

[SECURITY] [DLA 2079-1] otrs2 security update

Package : otrs2 Version : 3.3.18-1+deb8u13 CVE ID : CVE-2020-1765 CVE-2020-1766 CVE-2020-1767 Several vulnerabilities have been discovered in the otrs2 package that may lead to unauthorized access, remote code execution and spoofing. CVE-2020-1765 An improper control of parameters allows the...

6.1CVSS6.7AI score0.01499EPSS
Exploits0
nvd
nvd
added 2020/01/10 3:15 p.m.26 views

CVE-2020-1766

Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javascript from a special crafted SVG file rendered as inline jpg file. This issue affects: OTRS Community Edition 5.0.x version 5.0.39 and prior...

6.1CVSS5.3AI score0.01273EPSS
Exploits0References6
osv
osv
added 2020/01/10 3:15 p.m.1 views

DEBIAN-CVE-2020-1766

Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javascript from a special crafted SVG file rendered as inline jpg file. This issue affects: OTRS Community Edition 5.0.x version 5.0.39 and prior...

6.1CVSS5.2AI score0.01273EPSS
Exploits0References1
cvelist
cvelist
added 2020/01/10 3:8 p.m.30 views

CVE-2020-1766 Improper handling of uploaded inline images

Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javascript from a special crafted SVG file rendered as inline jpg file. This issue affects: OTRS Community Edition 5.0.x version 5.0.39 and prior...

2CVSS6.8AI score0.01273EPSS
Exploits0References6
cve
cve
added 2020/01/10 3:8 p.m.215 views

CVE-2020-1766

CVE-2020-1766 affects OTRS/Open Source Ticket Request System where improper handling of uploaded images can, in very rare conditions, cause a browser to execute malicious JavaScript from a crafted SVG rendered as an inline JPG. Public advisories in connected documents refer to multiple vendor upd...

6.1CVSS5.6AI score0.01273EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder