Tom Wolters

**Name of the Vulnerable Software and Affected Versions** Request Tracker (RT) versions 4.4.6 and earlier Request Tracker (RT) versions 5.x prior to 5.0.5 **Description** The issue allows information exposure in responses to mail-gateway REST API calls. This is due to excessive data output by the application when authenticated users search for transactions in the transaction query builder. Exploitation of this issue may allow a remote attacker to gain unauthorized access to confidential information. **Recommendations** For versions prior to 4.4.7, update to version 4.4.7 or later. For versions 5.x prior to 5.0.5, update to version 5.0.5 or later. As a temporary workaround, consider restricting access to the mail-gateway REST API until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Best Practical Request Tracker (RT) versions 4.4.6 and earlier Best Practical Request Tracker (RT) versions 5.0.4 and earlier **Description** The issue allows Information Disclosure via fake or spoofed RT email headers in an email message or a mail-gateway REST API call. This is due to insufficient cleaning of user-provided data when processing email headers. Exploitation of the issue may allow a remote attacker to execute arbitrary HTML code by sending a specially crafted email message. **Recommendations** For versions 4.4.6 and earlier, update to version 4.4.7 or later. For versions 5.0.4 and earlier, update to version 5.0.5 or later. As a temporary workaround, consider restricting access to the mail-gateway REST API call until a patch is available.

**Name of the Vulnerable Software and Affected Versions** White Rabbit Switch (affected versions not specified) **Description** The issue allows an unauthenticated user to retrieve sensitive information, including password hashes and SNMP community strings. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** White Rabbit Switch (affected versions not specified) **Description** The issue allows an attacker to perform system commands under the context of the web application. By default, the web server runs as the root user, which can be exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sentry SDK versions prior to 1.14.0 **Description** The issue is related to the leakage of sensitive cookie values, including session cookies, to Sentry when using the Django integration of the Sentry SDK in a specific configuration. This can occur when the Sentry SDK configuration has `sendDefaultPII` set to `True`, a custom name is used for either `SESSION COOKIE NAME` or `CSRF COOKIE NAME` in Django settings, and data scrubbing features are not configured to account for the custom cookie names. The leaked cookies could be used by someone with access to Sentry issues to impersonate or escalate privileges within the application. **Recommendations** For versions prior to 1.14.0, use the SDK's filtering mechanism to remove cookies from the payload sent to Sentry. For error events, use the `before send` callback method, and for performance-related events (transactions), use the `before send transaction` callback method. Alternatively, use Sentry's advanced data scrubbing feature to account for custom cookie names by targeting the `$http.cookies`, `$http.headers`, `$request.cookies`, or `$request.headers` fields with a scrubbing rule. As of version 1.14.0, the Django integration of the `sentry-sdk` will detect custom cookie names based on Django settings and remove the values from the payload before sending the data to Sentry.