CPE-3574B7AF-C190-453A-9744-335B3DE3D631 Détail

CPE Details

Open Ticket Request System (OTRS) 5.0.32

Vendor

otrs

Product

otrs

Version

5.0.32

Created

2019-03-29
15h42 +00:00

Modifié

2019-03-29
15h42 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:otrs:otrs:5.0.32:::::::*

Informations

Vendor

otrs

Product

otrs

Version

5.0.32

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2021-36100	2022-03-21 09h15 +00:00	Specially crafted string in OTRS system configuration can allow the execution of any system command.	8.8	Haute
CVE-2020-1778	2020-11-23 15h32 +00:00	When OTRS uses multiple backends for user authentication (with LDAP), agents are able to login even if the account is set to invalid. This issue affects OTRS; 8.0.9 and prior versions.	4.3	Moyen
CVE-2019-12497	2019-06-16 22h00 +00:00	An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, Community Edition 6.0.x through 6.0.19, and Community Edition 5.0.x through 5.0.36. In the customer or external frontend, personal information of agents (e.g., Name and mail address) can be disclosed in external notes.	5.3	Moyen
CVE-2019-9892	2019-05-21 21h17 +00:00	An issue was discovered in Open Ticket Request System (OTRS) 5.x through 5.0.34, 6.x through 6.0.17, and 7.x through 7.0.6. An attacker who is logged into OTRS as an agent user with appropriate permissions may try to import carefully crafted Report Statistics XML that will result in reading of arbitrary files on the OTRS filesystem.	6.5	Moyen
CVE-2019-10067	2019-05-21 21h09 +00:00	An issue was discovered in Open Ticket Request System (OTRS) 7.x through 7.0.6 and Community Edition 5.0.x through 5.0.35 and 6.0.x through 6.0.17. An attacker who is logged into OTRS as an agent user with appropriate permissions may manipulate the URL to cause execution of JavaScript in the context of OTRS.	5.4	Moyen
CVE-2019-9752	2019-03-13 21h00 +00:00	An issue was discovered in Open Ticket Request System (OTRS) 5.x before 5.0.34, 6.x before 6.0.16, and 7.x before 7.0.4. An attacker who is logged into OTRS as an agent or a customer user may upload a carefully crafted resource in order to cause execution of JavaScript in the context of OTRS. This is related to Content-type mishandling in Kernel/Modules/PictureUpload.pm.	5.4	Moyen
CVE-2011-2385	2011-07-19 18h00 +00:00	The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before 1.0.3 in Open Ticket Request System (OTRS) does not properly restrict use of the iPhoneHandle interface, which allows remote authenticated users to gain privileges, and consequently read or modify OTRS core objects, via unspecified vectors.	6.5

Open Ticket Request System (OTRS) 5.0.32

CPE Details

CPE Name: cpe:2.3:a:otrs:otrs:5.0.32:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:otrs:otrs:5.0.32:::::::*