Lucene search

K

PRIOn knowledge basePRION:CVE-2019-18179

HistoryJan 06, 2020 - 8:15 p.m.

Design/Logic Flaw

2020-01-0620:15:00

PRIOn knowledge base

www.prio-n.com

13

4.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.0%

An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.12, and Community Edition 5.0.x through 5.0.38 and 6.0.x through 6.0.23. An attacker who is logged into OTRS as an agent is able to list tickets assigned to other agents, even tickets in a queue where the attacker doesn’t have permissions.

CPENameOperatorVersion
debian_linuxeq8.0
backports_sleeq15.0 sp1
backports_sleeq15.0
backports_sleeq15.0 sp2
leapeq15.1
leapeq15.2
otrsge5.0.0
otrsle5.0.38
otrsge6.0.0
otrsle6.0.23

Rows per page:

1-10 of 121

References

lists.opensuse.org/opensuse-security-announce/2020-04/msg00038.html

lists.opensuse.org/opensuse-security-announce/2020-09/msg00066.html

lists.opensuse.org/opensuse-security-announce/2020-09/msg00077.html

community.otrs.com/security-advisory-2019-14-security-update-for-otrs-framework/

lists.debian.org/debian-lts-announce/2020/01/msg00000.html

lists.debian.org/debian-lts-announce/2023/08/msg00040.html

4.4 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.0%

Related for PRION:CVE-2019-18179

openvas5 osv3 debiancve1 nessus4 nvd1 ubuntucve1 debian2 cvelist1 cve1 suse3