Tim Püttmanns

**Nome do Software Vulnerável e Versões Afetadas** O nome do produto não pode ser determinado. **Descrição** Informações gerais sobre o problema não foram explicitamente fornecidas. **Recomendações** No momento, não há informações sobre uma versão mais recente que contenha uma correção para esta vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** OTRS versions 7.0.X through 7.0.46 OTRS versions 8.0.X through 8.0.36 OTRS Community Edition versions 6.0.X through 6.0.34 **Description** The issue allows the loading of external images even when configured to block them, by using protocol-relative URLs in the payload. This can be exploited to retrieve the IP address of the user. **Recommendations** For OTRS versions 7.0.X through 7.0.46, update to version 7.0.47 or later. For OTRS versions 8.0.X through 8.0.36, update to version 8.0.37 or later. For OTRS Community Edition versions 6.0.X through 6.0.34, update to a version later than 6.0.34. As a temporary workaround, consider restricting the loading of external images to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OTRS versions 7.0.X through 7.0.46 OTRS versions 8.0.X through 8.0.36 OTRS Community Edition versions 6.0.X through 6.0.34 **Description** An attacker who is logged into OTRS as a user with privileges to create and change customer user data may manipulate the `CustomerID` field to execute JavaScript code that runs immediately after the data is saved. The issue only occurs if the configuration for `AdminCustomerUser::UseAutoComplete` was changed before. **Recommendations** For OTRS versions 7.0.X through 7.0.46, update to version 7.0.47 or later. For OTRS versions 8.0.X through 8.0.36, update to version 8.0.37 or later. For OTRS Community Edition versions 6.0.X through 6.0.34, update to version 6.0.35 or later. As a temporary workaround, consider restricting access to the `CustomerID` field until a patch is available. Restrict the use of the `AdminCustomerUser::UseAutoComplete` configuration to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OTRS versions 7.0.X through 7.0.44 OTRS versions 8.0.X through 8.0.34 OTRS Community Edition versions 6.0.1 through 6.0.34 **Description** The issue is related to an Improper Input Validation vulnerability in the `ContentType` parameter for attachments on `TicketCreate` or `TicketUpdate` operations of the OTRS Generic Interface modules. This allows any authenticated attacker to perform a host header injection for the `ContentType` header of the attachment. **Recommendations** For OTRS versions 7.0.X through 7.0.44, update to version 7.0.45 or later. For OTRS versions 8.0.X through 8.0.34, update to version 8.0.35 or later. For OTRS Community Edition versions 6.0.1 through 6.0.34, update to a version outside of this range or apply a patch if available. As a temporary workaround, consider restricting access to the `TicketCreate` and `TicketUpdate` operations of the OTRS Generic Interface modules until a patch is available. Restrict the use of the `ContentType` parameter for attachments to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OTRS versions 7.0.X through 7.0.44 OTRS versions 8.0.X through 8.0.34 OTRS Community Edition versions 6.0.1 through 6.0.34 **Description** The issue is related to improper neutralization of commands allowed to be executed via OTRS System Configuration, for example, SchedulerCronTaskModule using UnitTests modules. This allows any authenticated attacker with admin privileges to execute code locally. **Recommendations** For OTRS versions 7.0.X through 7.0.44, update to version 7.0.45 or later. For OTRS versions 8.0.X through 8.0.34, update to version 8.0.35 or later. For OTRS Community Edition versions 6.0.1 through 6.0.34, update to version 6.0.35 or later. As a temporary workaround, consider disabling the SchedulerCronTaskModule and UnitTests modules until a patch is available. Restrict access to the OTRS System Configuration to minimize the risk of exploitation.

**Nome do software vulnerável e versões afetadas** Versões do OTRS 7.0.1 a 7.0.40 Patch 1 Versões do OTRS 8.0.1 a 8.0.28 Patch 1 Versões do OTRS Community Edition 6.0.1 a 6.0.34 **Descrição** O problema está relacionado a uma vulnerabilidade de validação inadequada de entrada que permite injeção de SQL por meio do serviço web TicketSearch. Essa vulnerabilidade afeta o OTRS e o OTRS Community Edition, possibilitando potenciais ataques de injeção de SQL. **Recomendações** Para as versões do OTRS 7.0.1 a 7.0.40 Patch 1, atualize para a versão 7.0.40 Patch 1 ou posterior. Para as versões do OTRS 8.0.1 a 8.0.28 Patch 1, atualize para a versão 8.0.28 Patch 1 ou posterior. Para as versões do OTRS Community Edition 6.0.1 a 6.0.34, considere desativar o serviço web TicketSearch até que um patch esteja disponível.

**Name of the Vulnerable Software and Affected Versions** OTRS versions 7.0.X through 7.0.41 OTRS versions 8.0.X through 8.0.30 OTRS Community Edition versions 6.0.1 through 6.0.34 **Description** The issue is related to an Improper Input Validation vulnerability in the ACL modules of OTRS AG OTRS and OTRS Community Edition. This vulnerability allows Local Execution of Code when creating or importing an ACL, as it is possible to inject code via manipulated comments and ACL names. **Recommendations** For OTRS versions 7.0.X through 7.0.41, update to version 7.0.42 or later. For OTRS versions 8.0.X through 8.0.30, update to version 8.0.31 or later. For OTRS Community Edition versions 6.0.1 through 6.0.34, update to version 6.0.35 or later. As a temporary workaround, consider restricting the creation and import of ACLs to minimize the risk of exploitation.