0.001 Low
EPSS
Percentile
31.0%
Attacker is able to determine if the provided username exists (and it’s valid) using Request New Password feature, based on the response time.
launchpad.net/bugs/cve/CVE-2022-32741
nvd.nist.gov/vuln/detail/CVE-2022-32741
otrs.com/release-notes/otrs-security-advisory-2022-09/
security-tracker.debian.org/tracker/CVE-2022-32741
www.cve.org/CVERecord?id=CVE-2022-32741