PT-2019-6896 · Otrs · Otrs Itsm+2

Publicado

2019-11-27

Atualizado

2024-06-15

CVE-2013-2625

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions OTRS Help Desk versions prior to 3.2.4 OTRS ITSM versions prior to 3.2.3 FAQ versions prior to 2.2.3

Description An Access Bypass issue exists due to the lack of verification of access rights by the object linking mechanism.

Recommendations For OTRS Help Desk versions prior to 3.2.4, update to version 3.2.4 or later. For OTRS ITSM versions prior to 3.2.3, update to version 3.2.3 or later. For FAQ versions prior to 2.2.3, update to version 2.2.3 or later.

Correção

Improper Privilege Management

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-269

Identificadores relacionados

CVE-2013-2625

OPENSUSE-SU-2024:10073-1

Produtos afetados

Faq

Otrs Help Desk

Otrs Itsm

PT-2019-6896 · Otrs · Otrs Itsm+2

CVE-2013-2625

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 24