Search

Find a vulnerability

Search criteria

    92 vulnerabilities found for ((OTRS)) Community Edition by OTRS AG

    CVE-2026-48209 (GCVE-0-2026-48209)

    Vulnerability from nvd – Published: 2026-06-01 03:32 – Updated: 2026-06-01 13:19
    VLAI
    Title
    Reflected XSS in authenticated agent context
    Summary
    An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into manipulated request URLs, attackers can execute arbitrary script code in the context of an authenticated agent session when the crafted link is opened. This issue affects OTRS: * 7.0.x Please note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    • CWE-116 - Improper Encoding or Escaping of Output
    Assigner
    Impacted products
    Date Public
    2026-06-01 07:00
    Credits
    Special thanks to William Bastos (@chor4o) for reporting this vulnerability
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48209",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:19:36.979966Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:19:45.357Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to William Bastos (@chor4o) for reporting this vulnerability"
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eAn improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into manipulated request URLs, attackers can execute arbitrary script code in the context of an authenticated agent session when the crafted link is opened.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cp\u003eThis issue affects OTRS:\u003c/p\u003e\u003cul\u003e\u003cli\u003e7.0.x\u003c/li\u003e\u003c/ul\u003ePlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into manipulated request URLs, attackers can execute arbitrary script code in the context of an authenticated agent session when the crafted link is opened.\n\nThis issue affects OTRS:\n\n  *  7.0.x\n\nPlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-116",
                  "description": "CWE-116 Improper Encoding or Escaping of Output",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:32:28.473Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-08/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to latest version of OTRS (2026.4.1. or later). Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to latest version of OTRS (2026.4.1. or later). Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-08",
            "defect": [
              "Ticket#2026052110000287",
              "Ticket#2026041442001606"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Reflected XSS in authenticated agent context",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48209",
        "datePublished": "2026-06-01T03:32:28.473Z",
        "dateReserved": "2026-05-21T12:12:49.645Z",
        "dateUpdated": "2026-06-01T13:19:45.357Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48208 (GCVE-0-2026-48208)

    Vulnerability from nvd – Published: 2026-06-01 03:32 – Updated: 2026-06-01 13:19
    VLAI
    Title
    Denial-of-Service via SVG Rendering in Ticket
    Summary
    An improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article rendering allows attackers to inject specially crafted SVG payloads via email content, leading to browser-side resource exhaustion and denial of service when affected tickets are opened by an agent or customer. The issue can be exploited without JavaScript execution and is not mitigated by the configured Content Security Policy (CSP). This issue affects OTRS: * 7.0.X * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X Please note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    • CWE-791 - Incomplete Filtering of Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x
    Affected: 2026.x , ≤ 2026.3.x (patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.x
    Create a notification for this product.
    Date Public
    2026-06-01 07:00
    Credits
    Special thanks to Daniel Triznafor reporting this vulnerability
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48208",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:19:13.837405Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:19:22.939Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Frontend",
                "External Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "status": "affected",
                  "version": "2025.x"
                },
                {
                  "lessThanOrEqual": "2026.3.x",
                  "status": "affected",
                  "version": "2026.x",
                  "versionType": "patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Frontend",
                "External Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Daniel Triznafor reporting this vulnerability"
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article rendering allows attackers to inject specially crafted SVG payloads via email content, leading to browser-side resource exhaustion and denial of service when affected tickets are opened by an agent or customer. The issue can be exploited without JavaScript execution and is not mitigated by the configured Content Security Policy (CSP).\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects OTRS:\u003c/p\u003e\u003cul\u003e\u003cli\u003e7.0.X\u003c/li\u003e\u003cli\u003e8.0.X\u003c/li\u003e\u003cli\u003e2023.X\u003c/li\u003e\u003cli\u003e2024.X\u003c/li\u003e\u003cli\u003e2025.X\u003c/li\u003e\u003cli\u003e2026.X before 2026.4.X\u003c/li\u003e\u003c/ul\u003ePlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article rendering allows attackers to inject specially crafted SVG payloads via email content, leading to browser-side resource exhaustion and denial of service when affected tickets are opened by an agent or customer. The issue can be exploited without JavaScript execution and is not mitigated by the configured Content Security Policy (CSP).\n\nThis issue affects OTRS:\n\n  *  7.0.X\n  *  8.0.X\n  *  2023.X\n  *  2024.X\n  *  2025.X\n  *  2026.X before 2026.4.X\n\nPlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-130",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-130 Excessive Allocation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400 Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-791",
                  "description": "CWE-791 Incomplete Filtering of Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:32:38.926Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-07/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-07",
            "defect": [
              "Ticket#2026052110000251",
              "Issue#4802"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Denial-of-Service via SVG Rendering in Ticket",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48208",
        "datePublished": "2026-06-01T03:32:38.926Z",
        "dateReserved": "2026-05-21T12:12:49.645Z",
        "dateUpdated": "2026-06-01T13:19:22.939Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48188 (GCVE-0-2026-48188)

    Vulnerability from nvd – Published: 2026-06-01 03:33 – Updated: 2026-06-01 13:17
    VLAI
    Title
    SQL Injection via MySQL Quote Method
    Summary
    An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition database layer module allows an unauthenticated SQL injection which can lead to an authentication bypass. This issue only affects the system if the MySQL/MariaDB server is configured with the NO_BACKSLASH_ESCAPES SQL mode. This issue affects OTRS: * 7.0.X * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X * (OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x
    Affected: 2026.x , ≤ 2026.3.x (patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.x
    Create a notification for this product.
    Date Public
    2026-06-01 07:00
    Credits
    Special thanks to Daniel Triznafor reporting this vulnerability
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48188",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:17:22.840595Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:17:31.447Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Database Layer"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "status": "affected",
                  "version": "2025.x"
                },
                {
                  "lessThanOrEqual": "2026.3.x",
                  "status": "affected",
                  "version": "2026.x",
                  "versionType": "patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Daniel Triznafor reporting this vulnerability"
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition\u0026nbsp;database layer module allows an unauthenticated SQL injection which can lead to an authentication bypass. This issue only affects the system if\u0026nbsp;the MySQL/MariaDB server is configured with the \u003ccode\u003eNO_BACKSLASH_ESCAPES\u003c/code\u003e SQL mode.\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects OTRS: \u003c/p\u003e\u003cul\u003e\u003cli\u003e7.0.X\u003c/li\u003e\u003cli\u003e8.0.X\u003c/li\u003e\u003cli\u003e2023.X\u003c/li\u003e\u003cli\u003e2024.X\u003c/li\u003e\u003cli\u003e2025.X\u003c/li\u003e\u003cli\u003e2026.X before 2026.4.X\u003c/li\u003e\u003cli\u003e(OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition\u00a0database layer module allows an unauthenticated SQL injection which can lead to an authentication bypass. This issue only affects the system if\u00a0the MySQL/MariaDB server is configured with the NO_BACKSLASH_ESCAPES SQL mode.\n\nThis issue affects OTRS: \n\n  *  7.0.X\n  *  8.0.X\n  *  2023.X\n  *  2024.X\n  *  2025.X\n  *  2026.X before 2026.4.X\n  *  (OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:33:15.822Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-02/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-02",
            "defect": [
              "Ticket#2026052110000134",
              "Issue#4824",
              "Issue#4859"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "SQL Injection via MySQL Quote Method",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Reconfigure\u0026nbsp;MySQL/MariaDB servernot to use\u0026nbsp;\u003ccode\u003eNO_BACKSLASH_ESCAPES\u003c/code\u003e SQL"
                }
              ],
              "value": "Reconfigure\u00a0MySQL/MariaDB servernot to use\u00a0NO_BACKSLASH_ESCAPES SQL"
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48188",
        "datePublished": "2026-06-01T03:33:15.822Z",
        "dateReserved": "2026-05-21T07:53:13.254Z",
        "dateUpdated": "2026-06-01T13:17:31.447Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48187 (GCVE-0-2026-48187)

    Vulnerability from nvd – Published: 2026-06-01 03:33 – Updated: 2026-06-01 13:17
    VLAI
    Title
    Email with special content can lead to DoS
    Summary
    An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS: * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X Please note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    • CWE-770 - Allocation of Resources Without Limits or Throttling
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Unknown: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x
    Affected: 2026.x , ≤ 2026.3.x (patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Unknown: 6.x
    Create a notification for this product.
    Date Public
    2026-06-01 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48187",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:16:53.155447Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:17:04.742Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "modules": [
                "Mail Backend"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "unknown",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "status": "affected",
                  "version": "2025.x"
                },
                {
                  "lessThanOrEqual": "2026.3.x",
                  "status": "affected",
                  "version": "2026.x",
                  "versionType": "patch"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "unknown",
                  "version": "6.x"
                }
              ]
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.\u003cp\u003eThis issue affects OTRS:\u003c/p\u003e\u003cul\u003e\u003cli\u003e8.0.X\u003c/li\u003e\u003cli\u003e2023.X\u003c/li\u003e\u003cli\u003e2024.X\u003c/li\u003e\u003cli\u003e2025.X\u003c/li\u003e\u003cli\u003e2026.X before 2026.4.X\u003c/li\u003e\u003c/ul\u003ePlease note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected"
                }
              ],
              "value": "An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS:\n\n  *  8.0.X\n  *  2023.X\n  *  2024.X\n  *  2025.X\n  *  2026.X before 2026.4.X\n\nPlease note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-130",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-130 Excessive Allocation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 5.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400 Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-770",
                  "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:33:23.990Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-06/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-06",
            "defect": [
              "Ticket#2026052110000214",
              "Issue#3890"
            ],
            "discovery": "USER"
          },
          "title": "Email with special content can lead to DoS",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48187",
        "datePublished": "2026-06-01T03:33:23.990Z",
        "dateReserved": "2026-05-21T07:53:13.253Z",
        "dateUpdated": "2026-06-01T13:17:04.742Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-24388 (GCVE-0-2025-24388)

    Vulnerability from nvd – Published: 2025-06-16 11:29 – Updated: 2025-06-16 15:01
    VLAI
    Title
    Unsafe handling of AJAX calls
    Summary
    A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * OTRS 2025.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-184 - Incomplete List of Disallowed Inputs
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x , ≤ 2025.5.1 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    Date Public
    2025-06-16 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-24388",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-16T14:59:52.657688Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-16T15:01:06.130Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Admin Interface",
                "Agent Interface (versions before OTRS 8)"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "lessThanOrEqual": "2025.5.1",
                  "status": "affected",
                  "version": "2025.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Admin Interface",
                "Agent Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "datePublic": "2025-06-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user.\u003cp\u003e\u003c/p\u003e\u003cdiv\u003e\u003c/div\u003e\u003cdiv\u003e\u003c/div\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003c/li\u003e\u003cli\u003eOTRS 2025.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user.\n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n  *  OTRS 2025.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-137",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-137 Parameter Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 3.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-184",
                  "description": "CWE-184 Incomplete List of Disallowed Inputs",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-16T11:29:20.295Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-06/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2025.5.2. or later. Please note that there will be no OTRS 7 patches and that impact for OTRS 7 and prior is higher."
                }
              ],
              "value": "Update to OTRS 2025.5.2. or later. Please note that there will be no OTRS 7 patches and that impact for OTRS 7 and prior is higher."
            }
          ],
          "source": {
            "advisory": "OSA-2025-06",
            "defect": [
              "Issue#3738"
            ],
            "discovery": "USER"
          },
          "title": "Unsafe handling of AJAX calls",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2025-24388",
        "datePublished": "2025-06-16T11:29:20.295Z",
        "dateReserved": "2025-01-21T09:09:58.720Z",
        "dateUpdated": "2025-06-16T15:01:06.130Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-24389 (GCVE-0-2025-24389)

    Vulnerability from nvd – Published: 2025-01-27 05:59 – Updated: 2025-02-12 20:41
    VLAI
    Title
    SMTP Password will be shown in cleartext on some SMTP errors
    Summary
    Certain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2025-01-27 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-24389",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-27T13:23:23.051987Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-12T20:41:31.676Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "SMTP Sending Module"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "modules": [
                "SMTP Sending Module"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "OTRS needs to be configured to use SMTP modules instead of sendmail"
                }
              ],
              "value": "OTRS needs to be configured to use SMTP modules instead of sendmail"
            }
          ],
          "datePublic": "2025-01-27T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eCertain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator.\u003c/div\u003e\u003cdiv\u003e\u003c/div\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "Certain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator.\n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-545",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-545 Pull Data from System Resources"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532 Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-27T05:59:01.064Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-03/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eUpdate to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches. \u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eOptional: Use MTA based sending on the OTRS instance e.g. postfix\u003c/div\u003e"
                }
              ],
              "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches. \n\nOptional: Use MTA based sending on the OTRS instance e.g. postfix"
            }
          ],
          "source": {
            "advisory": "OSA-2025-03",
            "defect": [
              "Issue#3185",
              "Ticket#2024112142001941"
            ],
            "discovery": "USER"
          },
          "title": "SMTP Password will be shown in cleartext on some SMTP errors",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Use a local MTA for sending instead of SMTP configuration within OTRS"
                }
              ],
              "value": "Use a local MTA for sending instead of SMTP configuration within OTRS"
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2025-24389",
        "datePublished": "2025-01-27T05:59:01.064Z",
        "dateReserved": "2025-01-21T09:09:58.721Z",
        "dateUpdated": "2025-02-12T20:41:31.676Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43446 (GCVE-0-2024-43446)

    Vulnerability from nvd – Published: 2025-01-27 05:58 – Updated: 2025-02-12 20:41
    VLAI
    Title
    Improper check of permissions in Generic Interface
    Summary
    An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x , < 2025.1.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2025-01-27 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43446",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-27T13:36:20.253690Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-12T20:41:31.804Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Generic Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "lessThan": "2025.1.x",
                  "status": "affected",
                  "version": "2025.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "datePublic": "2025-01-27T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. \u003cbr\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. \n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 3.5,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "CWE-269 Improper Privilege Management",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-27T05:58:29.271Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-02/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2025-02",
            "defect": [
              "Issue#3124",
              "Ticket#2024081942000891"
            ],
            "discovery": "USER"
          },
          "title": "Improper check of permissions in Generic Interface",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43446",
        "datePublished": "2025-01-27T05:58:29.271Z",
        "dateReserved": "2024-08-13T13:38:47.973Z",
        "dateUpdated": "2025-02-12T20:41:31.804Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43445 (GCVE-0-2024-43445)

    Vulnerability from nvd – Published: 2025-01-27 05:58 – Updated: 2025-02-12 20:41
    VLAI
    Title
    Missing X-Content-Type-Options: nosniff Header Allows MIME Type Sniffing
    Summary
    A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x , < 2025.1.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2025-01-27 08:00
    Credits
    Special thanks to Alissa Kim for reporting this vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43445",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-27T13:36:30.418831Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-12T20:41:31.932Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "lessThan": "2025.1.x",
                  "status": "affected",
                  "version": "2025.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to Alissa Kim for reporting this vulnerability."
            }
          ],
          "datePublic": "2025-01-27T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eA vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header \u003ccode\u003eX-Content-Type-Options\u003c/code\u003e to \u003ccode\u003enosniff\u003c/code\u003e. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. \u003cbr\u003e\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e\u003cbr\u003e"
                }
              ],
              "value": "A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. \n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-148",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-148 Content Spoofing"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-27T05:58:11.722Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-01/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2025-01",
            "defect": [
              "Issue#1708",
              "Ticket#2024110542002023"
            ],
            "discovery": "USER"
          },
          "title": "Missing X-Content-Type-Options: nosniff Header Allows MIME Type Sniffing",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43445",
        "datePublished": "2025-01-27T05:58:11.722Z",
        "dateReserved": "2024-08-13T13:38:47.973Z",
        "dateUpdated": "2025-02-12T20:41:31.932Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43444 (GCVE-0-2024-43444)

    Vulnerability from nvd – Published: 2024-08-26 08:42 – Updated: 2024-08-29 07:36
    VLAI
    Title
    Passwords are written to Admin Log Module
    Summary
    Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.50 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.5.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    otrs otrs Affected: 7.0.0 , ≤ 7.0.50 (custom)
    Affected: 8.0.0
    Affected: 2023.0
    Affected: 2024.0 , ≤ 2024.5.0 (custom)
        cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*
    Create a notification for this product.
    otrs otrs Affected: 6.0.0
        cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:*
    Create a notification for this product.
    Date Public
    2024-08-26 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "otrs",
                "vendor": "otrs",
                "versions": [
                  {
                    "lessThanOrEqual": "7.0.50",
                    "status": "affected",
                    "version": "7.0.0",
                    "versionType": "custom"
                  },
                  {
                    "status": "affected",
                    "version": "8.0.0"
                  },
                  {
                    "status": "affected",
                    "version": "2023.0"
                  },
                  {
                    "lessThanOrEqual": "2024.5.0",
                    "status": "affected",
                    "version": "2024.0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "otrs",
                "vendor": "otrs",
                "versions": [
                  {
                    "status": "affected",
                    "version": "6.0.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43444",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-26T13:57:06.436622Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-26T14:01:52.566Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Log Module",
                "Agent Authentication",
                "Customer Authentication"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.50",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.5.x",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Log Module",
                "Agent Authentication",
                "Customer Authentication"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "datePublic": "2024-08-26T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003ePasswords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled.\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS from 7.0.X through 7.0.50\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS from 2024.X through 2024.5.X\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled.\n\nThis issue affects: \n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-545",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-545 Pull Data from System Resources"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532 Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-29T07:36:13.555Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-12/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2024.6.x or OTRS 7.0.51\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2024.6.x or OTRS 7.0.51"
            }
          ],
          "source": {
            "advisory": "OSA-2024-12",
            "defect": [
              "Issue#2725",
              "Ticket#2024072442001041",
              "Ticket#2024072442000677"
            ],
            "discovery": "USER"
          },
          "title": "Passwords are written to Admin Log Module",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43444",
        "datePublished": "2024-08-26T08:42:58.796Z",
        "dateReserved": "2024-08-13T13:38:47.973Z",
        "dateUpdated": "2024-08-29T07:36:13.555Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43443 (GCVE-0-2024-43443)

    Vulnerability from nvd – Published: 2024-08-26 08:42 – Updated: 2024-08-26 14:55
    VLAI
    Title
    Stored XSS in process management
    Summary
    Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-790 - Improper Filtering of Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.50 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.5.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    Date Public
    2024-08-26 08:00
    Credits
    Special thanks to Marek Holka for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43443",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-26T14:55:41.494333Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-26T14:55:57.618Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Process Management"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.50",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.5.x",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Process Management"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Marek Holka for reporting these vulnerability."
            }
          ],
          "datePublic": "2024-08-26T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins.\u003cbr\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS from 7.0.X through 7.0.50\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS from 2024.X through 2024.5.X\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e"
                }
              ],
              "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins.\nThis issue affects: \n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-790",
                  "description": "CWE-790 Improper Filtering of Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-26T08:42:55.095Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-11/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2024.6.x or OTRS 7.0.51\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2024.6.x or OTRS 7.0.51"
            }
          ],
          "source": {
            "advisory": "OSA-2024-11",
            "defect": [
              "Issue#2592",
              "Ticket#2024061942000965"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Stored XSS in process management",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43443",
        "datePublished": "2024-08-26T08:42:55.095Z",
        "dateReserved": "2024-08-13T13:38:47.972Z",
        "dateUpdated": "2024-08-26T14:55:57.618Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43442 (GCVE-0-2024-43442)

    Vulnerability from nvd – Published: 2024-08-26 08:42 – Updated: 2024-08-26 15:27
    VLAI
    Title
    Stored XSS in System Configuration
    Summary
    Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') in  OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins. This issue affects:  * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-790 - Improper Filtering of Special Elements
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.50 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.5.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    Date Public
    2024-08-26 08:00
    Credits
    Special thanks to Marek Holka for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43442",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-26T15:26:34.955357Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-79",
                    "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-26T15:27:15.700Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "System Configuration"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.50",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.5.x",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Marek Holka for reporting these vulnerability."
            }
          ],
          "datePublic": "2024-08-26T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in\u0026nbsp; OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins.\u003cbr\u003e\u003cp\u003eThis issue affects:\u0026nbsp;\u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS from 7.0.X through 7.0.50\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS from 2024.X through 2024.5.X\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in\u00a0 OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins.\nThis issue affects:\u00a0\n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-790",
                  "description": "CWE-790 Improper Filtering of Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-26T08:42:39.842Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-10/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2024.6.x or OTRS 7.0.51\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2024.6.x or OTRS 7.0.51"
            }
          ],
          "source": {
            "advisory": "OSA-2024-10",
            "defect": [
              "Ticket#2024061942000965",
              "Issue#2592"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Stored XSS in System Configuration",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43442",
        "datePublished": "2024-08-26T08:42:39.842Z",
        "dateReserved": "2024-08-13T13:38:47.972Z",
        "dateUpdated": "2024-08-26T15:27:15.700Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23793 (GCVE-0-2024-23793)

    Vulnerability from nvd – Published: 2024-06-06 18:06 – Updated: 2024-08-01 23:13
    VLAI
    Title
    Upload of files outside application directory
    Summary
    The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts. This issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.49 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.3.2 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.1 , ≤ 6.0.34 (All)
    Create a notification for this product.
    otrs otrs Affected: 7.0.x , < 7.0.49 (custom)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , < 2024.3.2 (custom)
        cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*
    Create a notification for this product.
    otrs otrs_community_edition Affected: 6.0.1 , < 6.0.34 (custom)
        cpe:2.3:a:otrs:otrs_community_edition:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-06-03 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "otrs",
                "vendor": "otrs",
                "versions": [
                  {
                    "lessThan": "7.0.49",
                    "status": "affected",
                    "version": "7.0.x",
                    "versionType": "custom"
                  },
                  {
                    "status": "affected",
                    "version": "8.0.x"
                  },
                  {
                    "status": "affected",
                    "version": "2023.x"
                  },
                  {
                    "lessThan": "2024.3.2",
                    "status": "affected",
                    "version": "2024.x",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs_community_edition:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "otrs_community_edition",
                "vendor": "otrs",
                "versions": [
                  {
                    "lessThan": "6.0.34",
                    "status": "affected",
                    "version": "6.0.1",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23793",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-06T20:07:44.167335Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-06T20:22:49.508Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:13:07.327Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-05/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "File Upload"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.49",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.3.2",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.1",
                  "versionType": "All"
                }
              ]
            }
          ],
          "datePublic": "2024-06-03T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts.\u003cbr\u003e\u003cp\u003eThis issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.\u003c/p\u003e"
                }
              ],
              "value": "The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts.\nThis issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-17",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-17 Using Malicious Files"
                }
              ]
            },
            {
              "capecId": "CAPEC-549",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-549 Local Execution of Code"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-06-06T18:06:58.805Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-05/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS\u0026nbsp;2024.4.3 or OTRS 7.0.50 (extended support only)\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS\u00a02024.4.3 or OTRS 7.0.50 (extended support only)\n"
            }
          ],
          "source": {
            "advisory": "OSA-2024-05",
            "defect": [
              "Issue#2411"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Upload of files outside application directory",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-23793",
        "datePublished": "2024-06-06T18:06:58.805Z",
        "dateReserved": "2024-01-22T10:32:00.704Z",
        "dateUpdated": "2024-08-01T23:13:07.327Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5422 (GCVE-0-2023-5422)

    Vulnerability from nvd – Published: 2023-10-16 08:10 – Updated: 2024-09-16 17:02
    VLAI
    Title
    SSL Certificates are not checked for E-Mail Handling
    Summary
    The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the SSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate satisfies all necessary security requirements. This could allow an attacker to use an invalid certificate to claim to be a trusted host, use expired certificates, or conduct other attacks that could be detected if the certificate is properly validated. This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-295 - Improper Certificate Validation
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , < 7.0.47 (Patch)
    Affected: 8.0.x , < 8.0.37 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    otrs_ag otrs Affected: 7.0.x , < 7.0.47 (custom)
    Affected: 8.0.x , < 8.0.37 (custom)
        cpe:2.3:a:otrs_ag:otrs:*:*:*:*:*:*:*:*
    Create a notification for this product.
    otrs_community_edition otrs_community_edition Affected: 6.0x , < 6.0.34 (custom)
        cpe:2.3:a:otrs_community_edition:otrs_community_edition:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2023-10-16 07:00
    Credits
    Special thanks to Matthias Terlinde for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:59:44.689Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-10/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:otrs_ag:otrs:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "otrs",
                "vendor": "otrs_ag",
                "versions": [
                  {
                    "lessThan": "7.0.47",
                    "status": "affected",
                    "version": "7.0.x",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "8.0.37",
                    "status": "affected",
                    "version": "8.0.x",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:otrs_community_edition:otrs_community_edition:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "otrs_community_edition",
                "vendor": "otrs_community_edition",
                "versions": [
                  {
                    "lessThan": "6.0.34",
                    "status": "affected",
                    "version": "6.0x",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5422",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-16T16:57:40.338711Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-16T17:02:52.542Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "E-Mail Backend"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThan": "7.0.47",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "lessThan": "8.0.37",
                  "status": "affected",
                  "version": "8.0.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "E-Mail Backend"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Matthias Terlinde for reporting these vulnerability."
            }
          ],
          "datePublic": "2023-10-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eThe functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the \nSSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate \nsatisfies all necessary security requirements.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eThis could allow an \nattacker to use an invalid certificate to claim to be a trusted host, \nuse expired certificates, or conduct other attacks that could be \ndetected if the certificate is properly validated.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the \nSSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate \nsatisfies all necessary security requirements.\n\nThis could allow an \nattacker to use an invalid certificate to claim to be a trusted host, \nuse expired certificates, or conduct other attacks that could be \ndetected if the certificate is properly validated.\n\nThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-475",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-475 Signature Spoofing by Improper Validation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295 Improper Certificate Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-16T08:10:35.192Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-10/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\nUpdate to OTRS 7.0.47 or 8.0.37\n\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 7.0.47 or 8.0.37\n\n"
            }
          ],
          "source": {
            "advisory": "OSA-2023-10",
            "defect": [
              "Issue#21",
              "Issue#44",
              "Ticket#2022062142000679",
              "Ticket#2022061542000654"
            ],
            "discovery": "USER"
          },
          "title": "SSL Certificates are not checked for E-Mail Handling",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2023-5422",
        "datePublished": "2023-10-16T08:10:35.192Z",
        "dateReserved": "2023-10-05T08:12:18.101Z",
        "dateUpdated": "2024-09-16T17:02:52.542Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5421 (GCVE-0-2023-5421)

    Vulnerability from nvd – Published: 2023-10-16 08:10 – Updated: 2024-09-16 16:55
    VLAI
    Title
    Possible XSS execution in customer information
    Summary
    An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs immediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before. This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , < 7.0.47 (Patch)
    Affected: 8.0.x , < 8.0.37 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2023-10-16 07:00
    Credits
    Special thanks to Tim Püttmanns for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:59:44.593Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-09/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5421",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-16T16:53:50.683230Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-16T16:55:01.099Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThan": "7.0.47",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "lessThan": "8.0.37",
                  "status": "affected",
                  "version": "8.0.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to Tim P\u00fcttmanns for reporting these vulnerability."
            }
          ],
          "datePublic": "2023-10-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs \nimmediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before.\u003cbr\u003e\u003cp\u003eThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\u003c/p\u003e"
                }
              ],
              "value": "An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs \nimmediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before.\nThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 3.5,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-16T08:10:55.114Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-09/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\nUpdate to OTRS 7.0.47 or OTRS 8.0.37.\n\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 7.0.47 or OTRS 8.0.37.\n\n"
            }
          ],
          "source": {
            "advisory": "OSA-2023-09",
            "defect": [
              "Issue#1214",
              "Ticket#2023080742002233"
            ],
            "discovery": "EXTERNAL"
          },
          "title": " Possible XSS execution in customer information ",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Switch AdminCustomerUser::UseAutoComplete off\u003cbr\u003e"
                }
              ],
              "value": "Switch AdminCustomerUser::UseAutoComplete off\n"
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2023-5421",
        "datePublished": "2023-10-16T08:10:55.114Z",
        "dateReserved": "2023-10-05T08:12:09.849Z",
        "dateUpdated": "2024-09-16T16:55:01.099Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-38059 (GCVE-0-2023-38059)

    Vulnerability from nvd – Published: 2023-10-16 08:10 – Updated: 2024-09-16 16:56
    VLAI
    Title
    External pictures can be loaded even if not allowed by configuration
    Summary
    The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , < 7.0.47 (Patch)
    Affected: 8.0.x , < 8.0.37 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2023-10-16 07:00
    Credits
    Special thanks to Tim Püttmanns for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T17:30:13.552Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-08/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-38059",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-16T16:56:02.147025Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-16T16:56:26.630Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThan": "7.0.47",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "lessThan": "8.0.37",
                  "status": "affected",
                  "version": "8.0.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Agent Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to Tim P\u00fcttmanns for reporting these vulnerability."
            }
          ],
          "datePublic": "2023-10-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.\u003cp\u003eThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\u003c/p\u003e"
                }
              ],
              "value": "The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-37",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-37 Retrieve Embedded Sensitive Data"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-16T08:10:44.014Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-08/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 8.0.37 or OTRS 7.0.47\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 8.0.37 or OTRS 7.0.47\n"
            }
          ],
          "source": {
            "advisory": "OSA-2023-08",
            "defect": [
              "Issue#1185",
              "Ticket#2023041342000623"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "External pictures can be loaded even if not allowed by configuration",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2023-38059",
        "datePublished": "2023-10-16T08:10:44.014Z",
        "dateReserved": "2023-07-12T08:05:38.780Z",
        "dateUpdated": "2024-09-16T16:56:26.630Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-48187 (GCVE-0-2026-48187)

    Vulnerability from cvelistv5 – Published: 2026-06-01 03:33 – Updated: 2026-06-01 13:17
    VLAI
    Title
    Email with special content can lead to DoS
    Summary
    An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS: * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X Please note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    • CWE-770 - Allocation of Resources Without Limits or Throttling
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Unknown: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x
    Affected: 2026.x , ≤ 2026.3.x (patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Unknown: 6.x
    Create a notification for this product.
    Date Public
    2026-06-01 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48187",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:16:53.155447Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:17:04.742Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "modules": [
                "Mail Backend"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "unknown",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "status": "affected",
                  "version": "2025.x"
                },
                {
                  "lessThanOrEqual": "2026.3.x",
                  "status": "affected",
                  "version": "2026.x",
                  "versionType": "patch"
                }
              ]
            },
            {
              "defaultStatus": "unknown",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "unknown",
                  "version": "6.x"
                }
              ]
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.\u003cp\u003eThis issue affects OTRS:\u003c/p\u003e\u003cul\u003e\u003cli\u003e8.0.X\u003c/li\u003e\u003cli\u003e2023.X\u003c/li\u003e\u003cli\u003e2024.X\u003c/li\u003e\u003cli\u003e2025.X\u003c/li\u003e\u003cli\u003e2026.X before 2026.4.X\u003c/li\u003e\u003c/ul\u003ePlease note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected"
                }
              ],
              "value": "An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS:\n\n  *  8.0.X\n  *  2023.X\n  *  2024.X\n  *  2025.X\n  *  2026.X before 2026.4.X\n\nPlease note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-130",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-130 Excessive Allocation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 5.7,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400 Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-770",
                  "description": "CWE-770 Allocation of Resources Without Limits or Throttling",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:33:23.990Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-06/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-06",
            "defect": [
              "Ticket#2026052110000214",
              "Issue#3890"
            ],
            "discovery": "USER"
          },
          "title": "Email with special content can lead to DoS",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48187",
        "datePublished": "2026-06-01T03:33:23.990Z",
        "dateReserved": "2026-05-21T07:53:13.253Z",
        "dateUpdated": "2026-06-01T13:17:04.742Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48188 (GCVE-0-2026-48188)

    Vulnerability from cvelistv5 – Published: 2026-06-01 03:33 – Updated: 2026-06-01 13:17
    VLAI
    Title
    SQL Injection via MySQL Quote Method
    Summary
    An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition database layer module allows an unauthenticated SQL injection which can lead to an authentication bypass. This issue only affects the system if the MySQL/MariaDB server is configured with the NO_BACKSLASH_ESCAPES SQL mode. This issue affects OTRS: * 7.0.X * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X * (OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x
    Affected: 2026.x , ≤ 2026.3.x (patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.x
    Create a notification for this product.
    Date Public
    2026-06-01 07:00
    Credits
    Special thanks to Daniel Triznafor reporting this vulnerability
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48188",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:17:22.840595Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:17:31.447Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Database Layer"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "status": "affected",
                  "version": "2025.x"
                },
                {
                  "lessThanOrEqual": "2026.3.x",
                  "status": "affected",
                  "version": "2026.x",
                  "versionType": "patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Daniel Triznafor reporting this vulnerability"
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition\u0026nbsp;database layer module allows an unauthenticated SQL injection which can lead to an authentication bypass. This issue only affects the system if\u0026nbsp;the MySQL/MariaDB server is configured with the \u003ccode\u003eNO_BACKSLASH_ESCAPES\u003c/code\u003e SQL mode.\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects OTRS: \u003c/p\u003e\u003cul\u003e\u003cli\u003e7.0.X\u003c/li\u003e\u003cli\u003e8.0.X\u003c/li\u003e\u003cli\u003e2023.X\u003c/li\u003e\u003cli\u003e2024.X\u003c/li\u003e\u003cli\u003e2025.X\u003c/li\u003e\u003cli\u003e2026.X before 2026.4.X\u003c/li\u003e\u003cli\u003e(OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An improper Input Validation vulnerability in OTRS or ((OTRS)) Community Edition\u00a0database layer module allows an unauthenticated SQL injection which can lead to an authentication bypass. This issue only affects the system if\u00a0the MySQL/MariaDB server is configured with the NO_BACKSLASH_ESCAPES SQL mode.\n\nThis issue affects OTRS: \n\n  *  7.0.X\n  *  8.0.X\n  *  2023.X\n  *  2024.X\n  *  2025.X\n  *  2026.X before 2026.4.X\n  *  (OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 9.1,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:33:15.822Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-02/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-02",
            "defect": [
              "Ticket#2026052110000134",
              "Issue#4824",
              "Issue#4859"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "SQL Injection via MySQL Quote Method",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Reconfigure\u0026nbsp;MySQL/MariaDB servernot to use\u0026nbsp;\u003ccode\u003eNO_BACKSLASH_ESCAPES\u003c/code\u003e SQL"
                }
              ],
              "value": "Reconfigure\u00a0MySQL/MariaDB servernot to use\u00a0NO_BACKSLASH_ESCAPES SQL"
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48188",
        "datePublished": "2026-06-01T03:33:15.822Z",
        "dateReserved": "2026-05-21T07:53:13.254Z",
        "dateUpdated": "2026-06-01T13:17:31.447Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48208 (GCVE-0-2026-48208)

    Vulnerability from cvelistv5 – Published: 2026-06-01 03:32 – Updated: 2026-06-01 13:19
    VLAI
    Title
    Denial-of-Service via SVG Rendering in Ticket
    Summary
    An improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article rendering allows attackers to inject specially crafted SVG payloads via email content, leading to browser-side resource exhaustion and denial of service when affected tickets are opened by an agent or customer. The issue can be exploited without JavaScript execution and is not mitigated by the configured Content Security Policy (CSP). This issue affects OTRS: * 7.0.X * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X Please note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    • CWE-791 - Incomplete Filtering of Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x
    Affected: 2026.x , ≤ 2026.3.x (patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.x
    Create a notification for this product.
    Date Public
    2026-06-01 07:00
    Credits
    Special thanks to Daniel Triznafor reporting this vulnerability
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48208",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:19:13.837405Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:19:22.939Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Frontend",
                "External Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "status": "affected",
                  "version": "2025.x"
                },
                {
                  "lessThanOrEqual": "2026.3.x",
                  "status": "affected",
                  "version": "2026.x",
                  "versionType": "patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Frontend",
                "External Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Daniel Triznafor reporting this vulnerability"
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article rendering allows attackers to inject specially crafted SVG payloads via email content, leading to browser-side resource exhaustion and denial of service when affected tickets are opened by an agent or customer. The issue can be exploited without JavaScript execution and is not mitigated by the configured Content Security Policy (CSP).\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects OTRS:\u003c/p\u003e\u003cul\u003e\u003cli\u003e7.0.X\u003c/li\u003e\u003cli\u003e8.0.X\u003c/li\u003e\u003cli\u003e2023.X\u003c/li\u003e\u003cli\u003e2024.X\u003c/li\u003e\u003cli\u003e2025.X\u003c/li\u003e\u003cli\u003e2026.X before 2026.4.X\u003c/li\u003e\u003c/ul\u003ePlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An improper neutralization of active SVG content in OTRS or ((OTRS)) Community Edition ticket article rendering allows attackers to inject specially crafted SVG payloads via email content, leading to browser-side resource exhaustion and denial of service when affected tickets are opened by an agent or customer. The issue can be exploited without JavaScript execution and is not mitigated by the configured Content Security Policy (CSP).\n\nThis issue affects OTRS:\n\n  *  7.0.X\n  *  8.0.X\n  *  2023.X\n  *  2024.X\n  *  2025.X\n  *  2026.X before 2026.4.X\n\nPlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-130",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-130 Excessive Allocation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400 Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-791",
                  "description": "CWE-791 Incomplete Filtering of Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:32:38.926Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-07/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2026.4.1. or later. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-07",
            "defect": [
              "Ticket#2026052110000251",
              "Issue#4802"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Denial-of-Service via SVG Rendering in Ticket",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48208",
        "datePublished": "2026-06-01T03:32:38.926Z",
        "dateReserved": "2026-05-21T12:12:49.645Z",
        "dateUpdated": "2026-06-01T13:19:22.939Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-48209 (GCVE-0-2026-48209)

    Vulnerability from cvelistv5 – Published: 2026-06-01 03:32 – Updated: 2026-06-01 13:19
    VLAI
    Title
    Reflected XSS in authenticated agent context
    Summary
    An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into manipulated request URLs, attackers can execute arbitrary script code in the context of an authenticated agent session when the crafted link is opened. This issue affects OTRS: * 7.0.x Please note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    • CWE-116 - Improper Encoding or Escaping of Output
    Assigner
    Impacted products
    Date Public
    2026-06-01 07:00
    Credits
    Special thanks to William Bastos (@chor4o) for reporting this vulnerability
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-48209",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-01T13:19:36.979966Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-01T13:19:45.357Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to William Bastos (@chor4o) for reporting this vulnerability"
            }
          ],
          "datePublic": "2026-06-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eAn improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into manipulated request URLs, attackers can execute arbitrary script code in the context of an authenticated agent session when the crafted link is opened.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cp\u003eThis issue affects OTRS:\u003c/p\u003e\u003cul\u003e\u003cli\u003e7.0.x\u003c/li\u003e\u003c/ul\u003ePlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "An improper neutralization of user-controllable input in OTRS or ((OTRS)) Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting (XSS) attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into manipulated request URLs, attackers can execute arbitrary script code in the context of an authenticated agent session when the crafted link is opened.\n\nThis issue affects OTRS:\n\n  *  7.0.x\n\nPlease note that ((OTRS)) Community Edition 6.x and before are vulnerable. Products based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-116",
                  "description": "CWE-116 Improper Encoding or Escaping of Output",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T03:32:28.473Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2026-08/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to latest version of OTRS (2026.4.1. or later). Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to latest version of OTRS (2026.4.1. or later). Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2026-08",
            "defect": [
              "Ticket#2026052110000287",
              "Ticket#2026041442001606"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Reflected XSS in authenticated agent context",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2026-48209",
        "datePublished": "2026-06-01T03:32:28.473Z",
        "dateReserved": "2026-05-21T12:12:49.645Z",
        "dateUpdated": "2026-06-01T13:19:45.357Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-24388 (GCVE-0-2025-24388)

    Vulnerability from cvelistv5 – Published: 2025-06-16 11:29 – Updated: 2025-06-16 15:01
    VLAI
    Title
    Unsafe handling of AJAX calls
    Summary
    A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * OTRS 2025.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-184 - Incomplete List of Disallowed Inputs
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x , ≤ 2025.5.1 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    Date Public
    2025-06-16 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-24388",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-16T14:59:52.657688Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-16T15:01:06.130Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Admin Interface",
                "Agent Interface (versions before OTRS 8)"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "lessThanOrEqual": "2025.5.1",
                  "status": "affected",
                  "version": "2025.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Admin Interface",
                "Agent Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "datePublic": "2025-06-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user.\u003cp\u003e\u003c/p\u003e\u003cdiv\u003e\u003c/div\u003e\u003cdiv\u003e\u003c/div\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003c/li\u003e\u003cli\u003eOTRS 2025.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user.\n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n  *  OTRS 2025.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-137",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-137 Parameter Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 3.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-184",
                  "description": "CWE-184 Incomplete List of Disallowed Inputs",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-16T11:29:20.295Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-06/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2025.5.2. or later. Please note that there will be no OTRS 7 patches and that impact for OTRS 7 and prior is higher."
                }
              ],
              "value": "Update to OTRS 2025.5.2. or later. Please note that there will be no OTRS 7 patches and that impact for OTRS 7 and prior is higher."
            }
          ],
          "source": {
            "advisory": "OSA-2025-06",
            "defect": [
              "Issue#3738"
            ],
            "discovery": "USER"
          },
          "title": "Unsafe handling of AJAX calls",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2025-24388",
        "datePublished": "2025-06-16T11:29:20.295Z",
        "dateReserved": "2025-01-21T09:09:58.720Z",
        "dateUpdated": "2025-06-16T15:01:06.130Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-24389 (GCVE-0-2025-24389)

    Vulnerability from cvelistv5 – Published: 2025-01-27 05:59 – Updated: 2025-02-12 20:41
    VLAI
    Title
    SMTP Password will be shown in cleartext on some SMTP errors
    Summary
    Certain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2025-01-27 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-24389",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-27T13:23:23.051987Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-12T20:41:31.676Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "SMTP Sending Module"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "modules": [
                "SMTP Sending Module"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "OTRS needs to be configured to use SMTP modules instead of sendmail"
                }
              ],
              "value": "OTRS needs to be configured to use SMTP modules instead of sendmail"
            }
          ],
          "datePublic": "2025-01-27T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eCertain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator.\u003c/div\u003e\u003cdiv\u003e\u003c/div\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "Certain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator.\n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-545",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-545 Pull Data from System Resources"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532 Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-27T05:59:01.064Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-03/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eUpdate to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches. \u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eOptional: Use MTA based sending on the OTRS instance e.g. postfix\u003c/div\u003e"
                }
              ],
              "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches. \n\nOptional: Use MTA based sending on the OTRS instance e.g. postfix"
            }
          ],
          "source": {
            "advisory": "OSA-2025-03",
            "defect": [
              "Issue#3185",
              "Ticket#2024112142001941"
            ],
            "discovery": "USER"
          },
          "title": "SMTP Password will be shown in cleartext on some SMTP errors",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Use a local MTA for sending instead of SMTP configuration within OTRS"
                }
              ],
              "value": "Use a local MTA for sending instead of SMTP configuration within OTRS"
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2025-24389",
        "datePublished": "2025-01-27T05:59:01.064Z",
        "dateReserved": "2025-01-21T09:09:58.721Z",
        "dateUpdated": "2025-02-12T20:41:31.676Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43446 (GCVE-0-2024-43446)

    Vulnerability from cvelistv5 – Published: 2025-01-27 05:58 – Updated: 2025-02-12 20:41
    VLAI
    Title
    Improper check of permissions in Generic Interface
    Summary
    An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x , < 2025.1.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2025-01-27 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43446",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-27T13:36:20.253690Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-12T20:41:31.804Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Generic Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "lessThan": "2025.1.x",
                  "status": "affected",
                  "version": "2025.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "datePublic": "2025-01-27T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. \u003cbr\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e"
                }
              ],
              "value": "An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. \n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 3.5,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "CWE-269 Improper Privilege Management",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-27T05:58:29.271Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-02/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2025-02",
            "defect": [
              "Issue#3124",
              "Ticket#2024081942000891"
            ],
            "discovery": "USER"
          },
          "title": "Improper check of permissions in Generic Interface",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43446",
        "datePublished": "2025-01-27T05:58:29.271Z",
        "dateReserved": "2024-08-13T13:38:47.973Z",
        "dateUpdated": "2025-02-12T20:41:31.804Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43445 (GCVE-0-2024-43445)

    Vulnerability from cvelistv5 – Published: 2025-01-27 05:58 – Updated: 2025-02-12 20:41
    VLAI
    Title
    Missing X-Content-Type-Options: nosniff Header Allows MIME Type Sniffing
    Summary
    A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x
    Affected: 2025.x , < 2025.1.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2025-01-27 08:00
    Credits
    Special thanks to Alissa Kim for reporting this vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43445",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-27T13:36:30.418831Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-12T20:41:31.932Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "7.0.x"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "status": "affected",
                  "version": "2024.x"
                },
                {
                  "lessThan": "2025.1.x",
                  "status": "affected",
                  "version": "2025.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to Alissa Kim for reporting this vulnerability."
            }
          ],
          "datePublic": "2025-01-27T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eA vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header \u003ccode\u003eX-Content-Type-Options\u003c/code\u003e to \u003ccode\u003enosniff\u003c/code\u003e. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. \u003cbr\u003e\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS 7.0.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS 2024.X\u003cbr\u003e\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e\u003cp\u003e\u003c/p\u003e\u003cbr\u003e"
                }
              ],
              "value": "A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. \n\nThis issue affects: \n\n  *  OTRS 7.0.X\n\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS 2024.X\n\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-148",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-148 Content Spoofing"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-27T05:58:11.722Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2025-01/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2025.1.x. Please note that there will be no OTRS 7 patches"
            }
          ],
          "source": {
            "advisory": "OSA-2025-01",
            "defect": [
              "Issue#1708",
              "Ticket#2024110542002023"
            ],
            "discovery": "USER"
          },
          "title": "Missing X-Content-Type-Options: nosniff Header Allows MIME Type Sniffing",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43445",
        "datePublished": "2025-01-27T05:58:11.722Z",
        "dateReserved": "2024-08-13T13:38:47.973Z",
        "dateUpdated": "2025-02-12T20:41:31.932Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43444 (GCVE-0-2024-43444)

    Vulnerability from cvelistv5 – Published: 2024-08-26 08:42 – Updated: 2024-08-29 07:36
    VLAI
    Title
    Passwords are written to Admin Log Module
    Summary
    Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.50 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.5.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    otrs otrs Affected: 7.0.0 , ≤ 7.0.50 (custom)
    Affected: 8.0.0
    Affected: 2023.0
    Affected: 2024.0 , ≤ 2024.5.0 (custom)
        cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*
    Create a notification for this product.
    otrs otrs Affected: 6.0.0
        cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:*
    Create a notification for this product.
    Date Public
    2024-08-26 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "otrs",
                "vendor": "otrs",
                "versions": [
                  {
                    "lessThanOrEqual": "7.0.50",
                    "status": "affected",
                    "version": "7.0.0",
                    "versionType": "custom"
                  },
                  {
                    "status": "affected",
                    "version": "8.0.0"
                  },
                  {
                    "status": "affected",
                    "version": "2023.0"
                  },
                  {
                    "lessThanOrEqual": "2024.5.0",
                    "status": "affected",
                    "version": "2024.0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "otrs",
                "vendor": "otrs",
                "versions": [
                  {
                    "status": "affected",
                    "version": "6.0.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43444",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-26T13:57:06.436622Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-26T14:01:52.566Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Log Module",
                "Agent Authentication",
                "Customer Authentication"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.50",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.5.x",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Log Module",
                "Agent Authentication",
                "Customer Authentication"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "datePublic": "2024-08-26T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003ePasswords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled.\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS from 7.0.X through 7.0.50\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS from 2024.X through 2024.5.X\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled.\n\nThis issue affects: \n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-545",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-545 Pull Data from System Resources"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532 Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-29T07:36:13.555Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-12/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2024.6.x or OTRS 7.0.51\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2024.6.x or OTRS 7.0.51"
            }
          ],
          "source": {
            "advisory": "OSA-2024-12",
            "defect": [
              "Issue#2725",
              "Ticket#2024072442001041",
              "Ticket#2024072442000677"
            ],
            "discovery": "USER"
          },
          "title": "Passwords are written to Admin Log Module",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43444",
        "datePublished": "2024-08-26T08:42:58.796Z",
        "dateReserved": "2024-08-13T13:38:47.973Z",
        "dateUpdated": "2024-08-29T07:36:13.555Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43443 (GCVE-0-2024-43443)

    Vulnerability from cvelistv5 – Published: 2024-08-26 08:42 – Updated: 2024-08-26 14:55
    VLAI
    Title
    Stored XSS in process management
    Summary
    Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-790 - Improper Filtering of Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.50 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.5.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    Date Public
    2024-08-26 08:00
    Credits
    Special thanks to Marek Holka for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43443",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-26T14:55:41.494333Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-26T14:55:57.618Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Process Management"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.50",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.5.x",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Process Management"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Marek Holka for reporting these vulnerability."
            }
          ],
          "datePublic": "2024-08-26T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins.\u003cbr\u003e\u003cp\u003eThis issue affects: \u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS from 7.0.X through 7.0.50\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS from 2024.X through 2024.5.X\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003c/div\u003e\u003cbr\u003e"
                }
              ],
              "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins.\nThis issue affects: \n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-790",
                  "description": "CWE-790 Improper Filtering of Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-26T08:42:55.095Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-11/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2024.6.x or OTRS 7.0.51\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2024.6.x or OTRS 7.0.51"
            }
          ],
          "source": {
            "advisory": "OSA-2024-11",
            "defect": [
              "Issue#2592",
              "Ticket#2024061942000965"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Stored XSS in process management",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43443",
        "datePublished": "2024-08-26T08:42:55.095Z",
        "dateReserved": "2024-08-13T13:38:47.972Z",
        "dateUpdated": "2024-08-26T14:55:57.618Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-43442 (GCVE-0-2024-43442)

    Vulnerability from cvelistv5 – Published: 2024-08-26 08:42 – Updated: 2024-08-26 15:27
    VLAI
    Title
    Stored XSS in System Configuration
    Summary
    Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') in  OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins. This issue affects:  * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-790 - Improper Filtering of Special Elements
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.50 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.5.x (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x
    Create a notification for this product.
    Date Public
    2024-08-26 08:00
    Credits
    Special thanks to Marek Holka for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-43442",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-26T15:26:34.955357Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-79",
                    "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-26T15:27:15.700Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "System Configuration"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.50",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.5.x",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.0.x"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Marek Holka for reporting these vulnerability."
            }
          ],
          "datePublic": "2024-08-26T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in\u0026nbsp; OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins.\u003cbr\u003e\u003cp\u003eThis issue affects:\u0026nbsp;\u003c/p\u003e\u003cul\u003e\u003cli\u003eOTRS from 7.0.X through 7.0.50\u003c/li\u003e\u003cli\u003eOTRS 8.0.X\u003c/li\u003e\u003cli\u003eOTRS 2023.X\u003c/li\u003e\u003cli\u003eOTRS from 2024.X through 2024.5.X\u003c/li\u003e\u003cli\u003e((OTRS)) Community Edition: 6.0.x\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cdiv\u003eProducts based on the ((OTRS)) Community Edition also very likely to be affected\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "Improper Neutralization of Input done by an attacker with admin privileges (\u0027Cross-site Scripting\u0027) in\u00a0 OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins.\nThis issue affects:\u00a0\n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-790",
                  "description": "CWE-790 Improper Filtering of Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-08-26T08:42:39.842Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-10/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 2024.6.x or OTRS 7.0.51\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 2024.6.x or OTRS 7.0.51"
            }
          ],
          "source": {
            "advisory": "OSA-2024-10",
            "defect": [
              "Ticket#2024061942000965",
              "Issue#2592"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Stored XSS in System Configuration",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-43442",
        "datePublished": "2024-08-26T08:42:39.842Z",
        "dateReserved": "2024-08-13T13:38:47.972Z",
        "dateUpdated": "2024-08-26T15:27:15.700Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-23793 (GCVE-0-2024-23793)

    Vulnerability from cvelistv5 – Published: 2024-06-06 18:06 – Updated: 2024-08-01 23:13
    VLAI
    Title
    Upload of files outside application directory
    Summary
    The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts. This issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , ≤ 7.0.49 (Patch)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , ≤ 2024.3.2 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.1 , ≤ 6.0.34 (All)
    Create a notification for this product.
    otrs otrs Affected: 7.0.x , < 7.0.49 (custom)
    Affected: 8.0.x
    Affected: 2023.x
    Affected: 2024.x , < 2024.3.2 (custom)
        cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*
    Create a notification for this product.
    otrs otrs_community_edition Affected: 6.0.1 , < 6.0.34 (custom)
        cpe:2.3:a:otrs:otrs_community_edition:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-06-03 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "otrs",
                "vendor": "otrs",
                "versions": [
                  {
                    "lessThan": "7.0.49",
                    "status": "affected",
                    "version": "7.0.x",
                    "versionType": "custom"
                  },
                  {
                    "status": "affected",
                    "version": "8.0.x"
                  },
                  {
                    "status": "affected",
                    "version": "2023.x"
                  },
                  {
                    "lessThan": "2024.3.2",
                    "status": "affected",
                    "version": "2024.x",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:otrs:otrs_community_edition:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "otrs_community_edition",
                "vendor": "otrs",
                "versions": [
                  {
                    "lessThan": "6.0.34",
                    "status": "affected",
                    "version": "6.0.1",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-23793",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-06T20:07:44.167335Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-06T20:22:49.508Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T23:13:07.327Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-05/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "File Upload"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "7.0.49",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "status": "affected",
                  "version": "8.0.x"
                },
                {
                  "status": "affected",
                  "version": "2023.x"
                },
                {
                  "lessThanOrEqual": "2024.3.2",
                  "status": "affected",
                  "version": "2024.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.1",
                  "versionType": "All"
                }
              ]
            }
          ],
          "datePublic": "2024-06-03T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts.\u003cbr\u003e\u003cp\u003eThis issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.\u003c/p\u003e"
                }
              ],
              "value": "The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts.\nThis issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-17",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-17 Using Malicious Files"
                }
              ]
            },
            {
              "capecId": "CAPEC-549",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-549 Local Execution of Code"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-06-06T18:06:58.805Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2024-05/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS\u0026nbsp;2024.4.3 or OTRS 7.0.50 (extended support only)\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS\u00a02024.4.3 or OTRS 7.0.50 (extended support only)\n"
            }
          ],
          "source": {
            "advisory": "OSA-2024-05",
            "defect": [
              "Issue#2411"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Upload of files outside application directory",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2024-23793",
        "datePublished": "2024-06-06T18:06:58.805Z",
        "dateReserved": "2024-01-22T10:32:00.704Z",
        "dateUpdated": "2024-08-01T23:13:07.327Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5421 (GCVE-0-2023-5421)

    Vulnerability from cvelistv5 – Published: 2023-10-16 08:10 – Updated: 2024-09-16 16:55
    VLAI
    Title
    Possible XSS execution in customer information
    Summary
    An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs immediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before. This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , < 7.0.47 (Patch)
    Affected: 8.0.x , < 8.0.37 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2023-10-16 07:00
    Credits
    Special thanks to Tim Püttmanns for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:59:44.593Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-09/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5421",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-16T16:53:50.683230Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-16T16:55:01.099Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThan": "7.0.47",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "lessThan": "8.0.37",
                  "status": "affected",
                  "version": "8.0.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to Tim P\u00fcttmanns for reporting these vulnerability."
            }
          ],
          "datePublic": "2023-10-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs \nimmediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before.\u003cbr\u003e\u003cp\u003eThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\u003c/p\u003e"
                }
              ],
              "value": "An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs \nimmediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before.\nThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 3.5,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper Input Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-16T08:10:55.114Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-09/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\nUpdate to OTRS 7.0.47 or OTRS 8.0.37.\n\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 7.0.47 or OTRS 8.0.37.\n\n"
            }
          ],
          "source": {
            "advisory": "OSA-2023-09",
            "defect": [
              "Issue#1214",
              "Ticket#2023080742002233"
            ],
            "discovery": "EXTERNAL"
          },
          "title": " Possible XSS execution in customer information ",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Switch AdminCustomerUser::UseAutoComplete off\u003cbr\u003e"
                }
              ],
              "value": "Switch AdminCustomerUser::UseAutoComplete off\n"
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2023-5421",
        "datePublished": "2023-10-16T08:10:55.114Z",
        "dateReserved": "2023-10-05T08:12:09.849Z",
        "dateUpdated": "2024-09-16T16:55:01.099Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-38059 (GCVE-0-2023-38059)

    Vulnerability from cvelistv5 – Published: 2023-10-16 08:10 – Updated: 2024-09-16 16:56
    VLAI
    Title
    External pictures can be loaded even if not allowed by configuration
    Summary
    The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , < 7.0.47 (Patch)
    Affected: 8.0.x , < 8.0.37 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    Date Public
    2023-10-16 07:00
    Credits
    Special thanks to Tim Püttmanns for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T17:30:13.552Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-08/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-38059",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-16T16:56:02.147025Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-16T16:56:26.630Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "Agent Interface"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThan": "7.0.47",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "lessThan": "8.0.37",
                  "status": "affected",
                  "version": "8.0.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Agent Interface"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Special thanks to Tim P\u00fcttmanns for reporting these vulnerability."
            }
          ],
          "datePublic": "2023-10-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.\u003cp\u003eThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\u003c/p\u003e"
                }
              ],
              "value": "The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-37",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-37 Retrieve Embedded Sensitive Data"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-200",
                  "description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-16T08:10:44.014Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-08/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to OTRS 8.0.37 or OTRS 7.0.47\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 8.0.37 or OTRS 7.0.47\n"
            }
          ],
          "source": {
            "advisory": "OSA-2023-08",
            "defect": [
              "Issue#1185",
              "Ticket#2023041342000623"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "External pictures can be loaded even if not allowed by configuration",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2023-38059",
        "datePublished": "2023-10-16T08:10:44.014Z",
        "dateReserved": "2023-07-12T08:05:38.780Z",
        "dateUpdated": "2024-09-16T16:56:26.630Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-5422 (GCVE-0-2023-5422)

    Vulnerability from cvelistv5 – Published: 2023-10-16 08:10 – Updated: 2024-09-16 17:02
    VLAI
    Title
    SSL Certificates are not checked for E-Mail Handling
    Summary
    The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the SSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate satisfies all necessary security requirements. This could allow an attacker to use an invalid certificate to claim to be a trusted host, use expired certificates, or conduct other attacks that could be detected if the certificate is properly validated. This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-295 - Improper Certificate Validation
    Assigner
    Impacted products
    Vendor Product Version
    OTRS AG OTRS Affected: 7.0.x , < 7.0.47 (Patch)
    Affected: 8.0.x , < 8.0.37 (Patch)
    Create a notification for this product.
    OTRS AG ((OTRS)) Community Edition Affected: 6.0.x , ≤ 6.0.34 (All)
    Create a notification for this product.
    otrs_ag otrs Affected: 7.0.x , < 7.0.47 (custom)
    Affected: 8.0.x , < 8.0.37 (custom)
        cpe:2.3:a:otrs_ag:otrs:*:*:*:*:*:*:*:*
    Create a notification for this product.
    otrs_community_edition otrs_community_edition Affected: 6.0x , < 6.0.34 (custom)
        cpe:2.3:a:otrs_community_edition:otrs_community_edition:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2023-10-16 07:00
    Credits
    Special thanks to Matthias Terlinde for reporting these vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T07:59:44.689Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-10/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:otrs_ag:otrs:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "otrs",
                "vendor": "otrs_ag",
                "versions": [
                  {
                    "lessThan": "7.0.47",
                    "status": "affected",
                    "version": "7.0.x",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "8.0.37",
                    "status": "affected",
                    "version": "8.0.x",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:otrs_community_edition:otrs_community_edition:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "otrs_community_edition",
                "vendor": "otrs_community_edition",
                "versions": [
                  {
                    "lessThan": "6.0.34",
                    "status": "affected",
                    "version": "6.0x",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-5422",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-16T16:57:40.338711Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-16T17:02:52.542Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "modules": [
                "E-Mail Backend"
              ],
              "product": "OTRS",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThan": "7.0.47",
                  "status": "affected",
                  "version": "7.0.x",
                  "versionType": "Patch"
                },
                {
                  "lessThan": "8.0.37",
                  "status": "affected",
                  "version": "8.0.x",
                  "versionType": "Patch"
                }
              ]
            },
            {
              "defaultStatus": "affected",
              "modules": [
                "E-Mail Backend"
              ],
              "product": "((OTRS)) Community Edition",
              "vendor": "OTRS AG",
              "versions": [
                {
                  "lessThanOrEqual": "6.0.34",
                  "status": "affected",
                  "version": "6.0.x",
                  "versionType": "All"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Special thanks to Matthias Terlinde for reporting these vulnerability."
            }
          ],
          "datePublic": "2023-10-16T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003eThe functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the \nSSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate \nsatisfies all necessary security requirements.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eThis could allow an \nattacker to use an invalid certificate to claim to be a trusted host, \nuse expired certificates, or conduct other attacks that could be \ndetected if the certificate is properly validated.\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003eThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\u003cbr\u003e\u003c/div\u003e\u003cdiv\u003e\u003cbr\u003e\u003c/div\u003e"
                }
              ],
              "value": "The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the \nSSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate \nsatisfies all necessary security requirements.\n\nThis could allow an \nattacker to use an invalid certificate to claim to be a trusted host, \nuse expired certificates, or conduct other attacks that could be \ndetected if the certificate is properly validated.\n\nThis issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.\n\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-475",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-475 Signature Spoofing by Improper Validation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295 Improper Certificate Validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-16T08:10:35.192Z",
            "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
            "shortName": "OTRS"
          },
          "references": [
            {
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2023-10/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\nUpdate to OTRS 7.0.47 or 8.0.37\n\u003cbr\u003e"
                }
              ],
              "value": "Update to OTRS 7.0.47 or 8.0.37\n\n"
            }
          ],
          "source": {
            "advisory": "OSA-2023-10",
            "defect": [
              "Issue#21",
              "Issue#44",
              "Ticket#2022062142000679",
              "Ticket#2022061542000654"
            ],
            "discovery": "USER"
          },
          "title": "SSL Certificates are not checked for E-Mail Handling",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "assignerShortName": "OTRS",
        "cveId": "CVE-2023-5422",
        "datePublished": "2023-10-16T08:10:35.192Z",
        "dateReserved": "2023-10-05T08:12:18.101Z",
        "dateUpdated": "2024-09-16T17:02:52.542Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }