CVE-2008-7282 in OTRSinfo

Summary

Kernel/Output/HTML/CustomerNewTicketQueueSelectionGeneric.pm in Open Ticket Request System (OTRS) before 2.2.6, when the CustomerPanelOwnSelection and CustomerGroupSupport options are enabled, allows remote authenticated users to bypass intended access restrictions, and perform certain (1) list and (2) write operations on queues, via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

Reservation

03/18/2011

Disclosure

03/18/2011

Moderation

VulDB entry created

Entries

1: VDB-56864

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.0

EPSS

0.00196

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-7282
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-7282
CVE Details	https://www.cvedetails.com/cve/CVE-2008-7282/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!