Vulnerability & Exploit Database

Back to search

Debian: CVE-2017-15864: otrs2 -- security update

Severity CVSS Published Added Modified
4 (AV:N/AC:L/Au:S/C:P/I:N/A:N) November 15, 2017 November 23, 2017 December 03, 2017

Description

In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

debian-upgrade-otrs2