Open Ticket Request System (OTRS) 6.0.18

CPE Details

Open Ticket Request System (OTRS) 6.0.18
otrs
otrs
6.0.18
2019-06-19
21h34 +00:00
2019-06-19
21h34 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:otrs:otrs:6.0.18:*:*:*:*:*:*:*

Informations

Vendor

otrs

Product

otrs

Version

6.0.18

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-36100 2022-03-21 09h15 +00:00 Specially crafted string in OTRS system configuration can allow the execution of any system command.
8.8
Haute
CVE-2020-1778 2020-11-23 15h32 +00:00 When OTRS uses multiple backends for user authentication (with LDAP), agents are able to login even if the account is set to invalid. This issue affects OTRS; 8.0.9 and prior versions.
4.3
Moyen
CVE-2019-12497 2019-06-16 22h00 +00:00 An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, Community Edition 6.0.x through 6.0.19, and Community Edition 5.0.x through 5.0.36. In the customer or external frontend, personal information of agents (e.g., Name and mail address) can be disclosed in external notes.
5.3
Moyen
CVE-2011-2385 2011-07-19 18h00 +00:00 The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before 1.0.3 in Open Ticket Request System (OTRS) does not properly restrict use of the iPhoneHandle interface, which allows remote authenticated users to gain privileges, and consequently read or modify OTRS core objects, via unspecified vectors.
6.5