4 matches found
PT-2026-33824
A vulnerability in the SQL Box in the admin interface of OTRS leads to an uncontrolled resource consumption leading to a DoS against the webserver. will be killed by the systemThis issue affects OTRS: 7.0.X 8.0.X 2023.X 2024.X 2025.X 2026.X before 2026.3.X...
PT-2025-5354 · Unknown +1 · Otrs Community Edition +1
Name of the Vulnerable Software and Affected Versions: OTRS versions 7.0.X through 2024.X OTRS Community Edition version 6.0.x Description: Certain errors of the upstream libraries will insert sensitive information in the log mechanism and mails sent to the system administrator. Products based on...
SUSE CVE-2021-21442
In the project create screen it's possible to inject malicious JS code to the certain fields. The code might be executed in the Reporting screen. This issue affects: OTRS AG Time Accounting: 7.0.x versions prior to 7.0.19...
AZL-13053 CVE-2023-22458 affecting package redis for versions less than 6.2.9-1
Redis is an in-memory database that persists on disk. Authenticated users can issue a HRANDFIELD or ZRANDMEMBER command with specially crafted arguments to trigger a denial-of-service by crashing Redis with an assertion failure. This problem affects Redis versions 6.2 or newer up to but not...