Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-1771

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Attacker is able craft an article with a link to the customer address book with malicious content JavaScript. When agent opens the link, JavaScript code is...

5.4CVSS6.4AI score0.00835EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/23 12:0 a.m.47 views

openSUSE Security Update : otrs (openSUSE-2020-1475)

Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...

8.1CVSS5.9AI score0.02018EPSS
Exploits0References44
OPENSUSE Linux
OPENSUSE Linux
added 2020/09/23 12:0 a.m.67 views

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:1509-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

8.1CVSS6.5AI score0.02018EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2020/09/21 12:0 a.m.30 views

openSUSE: Security Advisory for Recommended (openSUSE-SU-2020:1475-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.1AI score0.02018EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/04/28 12:0 a.m.40 views

openSUSE Security Update : otrs (openSUSE-2020-551)

Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...

8.1CVSS5.9AI score0.02018EPSS
Exploits0References44
OPENSUSE Linux
OPENSUSE Linux
added 2020/04/25 12:0 a.m.93 views

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:0551-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

8.1CVSS6.5AI score0.02018EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2020/03/30 12:0 a.m.49 views

OTRS 5.0.x < 5.0.42, 6.0.x < 6.0.27, 7.0.x < 7.0.16 Multiple Vulnerabilities

OTRS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if description...

8.1CVSS4.9AI score0.01622EPSS
Exploits0References5
NVD
NVD
added 2020/03/27 1:15 p.m.18 views

CVE-2020-1771

Attacker is able craft an article with a link to the customer address book with malicious content JavaScript. When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: OTRS Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior...

5.4CVSS5.4AI score0.00835EPSS
Exploits0References5
Cvelist
Cvelist
added 2020/03/27 12:47 p.m.22 views

CVE-2020-1771 Possible XSS in Customer user address book

Attacker is able craft an article with a link to the customer address book with malicious content JavaScript. When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: OTRS Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior...

4.6CVSS6.4AI score0.00835EPSS
Exploits0References5
CVE
CVE
added 2020/03/27 12:47 p.m.208 views

CVE-2020-1771

CVE-2020-1771 affects OTRS Community Edition up to 6.0.26 and OTRS up to 7.0.15. An attacker can craft an article with a link to the customer address book containing malicious JavaScript; when opened, the missing parameter encoding allows JavaScript execution (XSS-like). Public disclosures and pa...

5.4CVSS6AI score0.00835EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder