vulnerability
Ubuntu: (CVE-2018-14593): otrs2 vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | Aug 4, 2018 | Jun 26, 2025 | Jun 26, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Aug 4, 2018
Added
Jun 26, 2025
Modified
Jun 26, 2025
Description
An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their privileges by accessing a specially crafted URL.
Solution
no-fix-ubuntu-package
References
- CVE-2018-14593
- https://attackerkb.com/topics/CVE-2018-14593
- URL-https://community.otrs.com/security-advisory-2018-03-security-update-for-otrs-framework/
- URL-https://community.otrs.com/security-advisory-2018-03-security-update-for-otrs-framework/?lang=de
- URL-https://www.cve.org/CVERecord?id=CVE-2018-14593
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.