PT-2014-8935 · Otrs · Otrs Help Desk

Publicado

2014-12-19

·

Atualizado

2024-06-15

·

CVE-2014-9324

CVSS v2.0

6.0

Média

VetorAV:N/AC:M/Au:S/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions OTRS Help Desk versions 3.2.x through 3.2.16 OTRS Help Desk versions 3.3.x through 3.3.10 OTRS Help Desk versions 4.0.x through 4.0.2
Description The issue allows remote authenticated users to access and modify arbitrary tickets.
Recommendations For OTRS Help Desk versions 3.2.x through 3.2.16, update to version 3.2.17 or later. For OTRS Help Desk versions 3.3.x through 3.3.10, update to version 3.3.11 or later. For OTRS Help Desk versions 4.0.x through 4.0.2, update to version 4.0.3 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2014-9324
DSA-3124-1
MGASA-2015-0031
OPENSUSE-SU-2024:10073-1

Produtos afetados

Otrs Help Desk