Vulnerability-Lookup

CNVD-2021-18385

Vulnerability from cnvd - Published: 2021-03-18

Title

OTRS AG OTRSTicketForms信息泄露漏洞

Description

OTRS AG OTRSTicketForms是德国OTRS公司的一个功能附加组件。使用它可以在代理和外部界面中显示不同的票证掩码和表格，具体取决于哪些动态字段与客户请求相关。 OTRS AG OTRSTicketForms中存在信息泄露漏洞，该漏洞源于当使用动态模板时(OTRSTicketForms )，管理员可使用未被正确屏蔽的OTRS标签，攻击者可利用该漏洞获取敏感信息。

Severity

中

Patch Name

OTRS AG OTRSTicketForms信息泄露漏洞的补丁

Patch Description

Formal description

厂商已提供漏洞修补方案，请关注厂商主页及时更新： https://otrs.com/otrs-solutions/corporate-security/

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-1779

Impacted products

Name
['OTRS AG OTRSTicketForms 6.0.', 'OTRS AG OTRSTicketForms <=6.0.40', 'OTRS AG OTRSTicketForms 7.0.', 'OTRS AG OTRSTicketForms <=7.0.29', 'OTRS AG OTRSTicketForms 8.0.*', 'OTRS AG OTRSTicketForms <=8.0.3']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-1779",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2020-1779"
    }
  },
  "description": "OTRS AG OTRSTicketForms\u662f\u5fb7\u56fdOTRS\u516c\u53f8\u7684\u4e00\u4e2a\u529f\u80fd\u9644\u52a0\u7ec4\u4ef6\u3002\u4f7f\u7528\u5b83\u53ef\u4ee5\u5728\u4ee3\u7406\u548c\u5916\u90e8\u754c\u9762\u4e2d\u663e\u793a\u4e0d\u540c\u7684\u7968\u8bc1\u63a9\u7801\u548c\u8868\u683c\uff0c\u5177\u4f53\u53d6\u51b3\u4e8e\u54ea\u4e9b\u52a8\u6001\u5b57\u6bb5\u4e0e\u5ba2\u6237\u8bf7\u6c42\u76f8\u5173\u3002\n\nOTRS AG OTRSTicketForms\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5f53\u4f7f\u7528\u52a8\u6001\u6a21\u677f\u65f6(OTRSTicketForms )\uff0c\u7ba1\u7406\u5458\u53ef\u4f7f\u7528\u672a\u88ab\u6b63\u786e\u5c4f\u853d\u7684OTRS\u6807\u7b7e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "formalWay": "\u5382\u5546\u5df2\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u8865\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u53ca\u65f6\u66f4\u65b0\uff1a\r\nhttps://otrs.com/otrs-solutions/corporate-security/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-18385",
  "openTime": "2021-03-18",
  "patchDescription": "OTRS AG OTRSTicketForms\u662f\u5fb7\u56fdOTRS\u516c\u53f8\u7684\u4e00\u4e2a\u529f\u80fd\u9644\u52a0\u7ec4\u4ef6\u3002\u4f7f\u7528\u5b83\u53ef\u4ee5\u5728\u4ee3\u7406\u548c\u5916\u90e8\u754c\u9762\u4e2d\u663e\u793a\u4e0d\u540c\u7684\u7968\u8bc1\u63a9\u7801\u548c\u8868\u683c\uff0c\u5177\u4f53\u53d6\u51b3\u4e8e\u54ea\u4e9b\u52a8\u6001\u5b57\u6bb5\u4e0e\u5ba2\u6237\u8bf7\u6c42\u76f8\u5173\u3002\r\n\r\nOTRS AG OTRSTicketForms\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u5f53\u4f7f\u7528\u52a8\u6001\u6a21\u677f\u65f6(OTRSTicketForms )\uff0c\u7ba1\u7406\u5458\u53ef\u4f7f\u7528\u672a\u88ab\u6b63\u786e\u5c4f\u853d\u7684OTRS\u6807\u7b7e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "OTRS AG OTRSTicketForms\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "OTRS AG OTRSTicketForms 6.0.*",
      "OTRS AG OTRSTicketForms \u003c=6.0.40",
      "OTRS AG OTRSTicketForms 7.0.*",
      "OTRS AG OTRSTicketForms \u003c=7.0.29",
      "OTRS AG OTRSTicketForms 8.0.*",
      "OTRS AG OTRSTicketForms \u003c=8.0.3"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-1779",
  "serverity": "\u4e2d",
  "submitTime": "2021-02-23",
  "title": "OTRS AG OTRSTicketForms\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2020-1779 (GCVE-0-2020-1779)

Vulnerability from cvelistv5 – Published: 2021-02-08 10:55 – Updated: 2024-09-16 17:15

Title

Dynamic templates reveal sensitive data when OTRS tags are used

Summary

When dynamic templates are used (OTRSTicketForms), admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior versions.

Severity

4.3 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N

CWE

CWE-200 - Information Exposure

Assigner

OTRS

References

1 reference

URL	Tags
https://otrs.com/release-notes/otrs-security-advi…	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
OTRS AG	OTRSTicketForms	Affected: 6.0.x , ≤ 6.0.40 (custom) Affected: 7.0.x , ≤ 7.0.29 (custom) Affected: 8.0.x , ≤ 8.0.3 (custom)

Date Public

2021-02-08 00:00

Credits

László Gyaraki

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T06:46:30.959Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://otrs.com/release-notes/otrs-security-advisory-2020-17/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "OTRSTicketForms",
          "vendor": "OTRS AG",
          "versions": [
            {
              "lessThanOrEqual": "6.0.40",
              "status": "affected",
              "version": "6.0.x",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "7.0.29",
              "status": "affected",
              "version": "7.0.x",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "8.0.3",
              "status": "affected",
              "version": "8.0.x",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "L\u00e1szl\u00f3 Gyaraki"
        }
      ],
      "datePublic": "2021-02-08T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "When dynamic templates are used (OTRSTicketForms), admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior versions."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200 Information Exposure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-02-08T10:55:18.000Z",
        "orgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
        "shortName": "OTRS"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://otrs.com/release-notes/otrs-security-advisory-2020-17/"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Upgrade to OTRSTicketForms 7.0.30 or OTRSTicketForms 8.0.4."
        }
      ],
      "source": {
        "advisory": "OSA-2021-03",
        "defect": [
          "2020092942003178"
        ],
        "discovery": "INTERNAL"
      },
      "title": "Dynamic templates reveal sensitive data when OTRS tags are used",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@otrs.com",
          "DATE_PUBLIC": "2021-02-08T00:00:00.000Z",
          "ID": "CVE-2020-1779",
          "STATE": "PUBLIC",
          "TITLE": "Dynamic templates reveal sensitive data when OTRS tags are used"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "OTRSTicketForms",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_name": "6.0.x",
                            "version_value": "6.0.40"
                          },
                          {
                            "version_affected": "\u003c=",
                            "version_name": "7.0.x",
                            "version_value": "7.0.29"
                          },
                          {
                            "version_affected": "\u003c=",
                            "version_name": "8.0.x",
                            "version_value": "8.0.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "OTRS AG"
              }
            ]
          }
        },
        "credit": [
          {
            "lang": "eng",
            "value": "L\u00e1szl\u00f3 Gyaraki"
          }
        ],
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "When dynamic templates are used (OTRSTicketForms), admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior versions."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200 Information Exposure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://otrs.com/release-notes/otrs-security-advisory-2020-17/",
              "refsource": "CONFIRM",
              "url": "https://otrs.com/release-notes/otrs-security-advisory-2020-17/"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "Upgrade to OTRSTicketForms 7.0.30 or OTRSTicketForms 8.0.4."
          }
        ],
        "source": {
          "advisory": "OSA-2021-03",
          "defect": [
            "2020092942003178"
          ],
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "2e1bf29f-dc29-4ed8-830c-7b9348b6f0e8",
    "assignerShortName": "OTRS",
    "cveId": "CVE-2020-1779",
    "datePublished": "2021-02-08T10:55:18.477Z",
    "dateReserved": "2019-11-29T00:00:00.000Z",
    "dateUpdated": "2024-09-16T17:15:28.699Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2021-18385

CVE-2020-1779 (GCVE-0-2020-1779)

Tags

Sightings

Nomenclature