Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2020/09/23 12:0 a.m.47 views

openSUSE Security Update : otrs (openSUSE-2020-1475)

Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...

8.1CVSS5.9AI score0.02018EPSS
Exploits0References44
OPENSUSE Linux
OPENSUSE Linux
added 2020/09/23 12:0 a.m.67 views

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:1509-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

8.1CVSS6.5AI score0.02018EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2020/09/21 12:0 a.m.30 views

openSUSE: Security Advisory for Recommended (openSUSE-SU-2020:1475-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.1AI score0.02018EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/05/04 12:0 a.m.31 views

Debian DLA-2198-1 : otrs2 security update

Several vulnerabilities have been discovered in otrs2 Open source Ticket Request System CVE-2020-1770 Support bundle generated files could contain sensitive information that might be unwanted to be disclosed. CVE-2020-1772 Its possible to craft Lost Password requests with wildcards in the Token...

7.5CVSS5.7AI score0.01622EPSS
Exploits0References5
Debian
Debian
added 2020/05/01 5:45 a.m.131 views

[SECURITY] [DLA 2198-1] otrs2 security update

Package : otrs2 Version : 3.3.18-1+deb8u15 CVE ID : CVE-2020-1770 CVE-2020-1772 CVE-2020-1774 Several vulnerabilities have been discovered in otrs2 Open source Ticket Request System CVE-2020-1770 Support bundle generated files could contain sensitive information that might be unwanted to be...

7.5CVSS6.8AI score0.01622EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/28 12:0 a.m.40 views

openSUSE Security Update : otrs (openSUSE-2020-551)

Otrs was updated to 5.0.42, fixing lots of bugs and security issues : https://community.otrs.com/otrs-community-edition-5s-patch-level-42/ - CVE-2020-1773 boo1168029 OSA-2020-10 : - Session / Password / Password token leak An attacker with the ability to generate session IDs or password reset...

8.1CVSS5.9AI score0.02018EPSS
Exploits0References44
OpenVAS
OpenVAS
added 2020/04/26 12:0 a.m.26 views

openSUSE: Security Advisory for Recommended (openSUSE-SU-2020:0551-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.1AI score0.02018EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/04/25 12:0 a.m.93 views

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:0551-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

8.1CVSS6.5AI score0.02018EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2020/03/30 12:0 a.m.49 views

OTRS 5.0.x < 5.0.42, 6.0.x < 6.0.27, 7.0.x < 7.0.16 Multiple Vulnerabilities

OTRS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if description...

8.1CVSS4.9AI score0.01622EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2020/03/27 1:15 p.m.26 views

CVE-2020-1772

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Tokens, generated by users which already requested new passwords. This issue affects: OTRS Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15...

7.5CVSS6.3AI score0.01622EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/03/27 12:47 p.m.31 views

CVE-2020-1772 Information Disclosure

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Tokens, generated by users which already requested new passwords. This issue affects: OTRS Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15...

6.5CVSS7.5AI score0.01622EPSS
Exploits0References6
CVE
CVE
added 2020/03/27 12:47 p.m.244 views

CVE-2020-1772

CVE-2020-1772 affects OTRS/Open Source Ticket Request System. An attacker can craft Lost Password requests with wildcards in the Token value to retrieve valid tokens generated for users who requested password resets, impacting versions: OTRS Community Edition 5.0.41 and earlier, 6.0.26 and earlie...

7.5CVSS6.9AI score0.01622EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2020/03/27 12:47 p.m.31 views

CVE-2020-1772

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Tokens, generated by users which already requested new passwords. This issue affects: OTRS Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15...

7.5CVSS4.6AI score0.01622EPSS
Exploits0
Rows per page
Query Builder