CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
EPSS
Percentile
38.3%
Open Ticket Request System (OTRS) before 3.0.0-beta6 adds
email-notification-ext articles to tickets during processing of event-based
notifications, which allows remote authenticated users to obtain
potentially sensitive information by reading a ticket.