Otrs Community Edition Vulnérabilités

Chronologie

Version

7.0.020
7.0.120
7.0.220
7.0.320
7.0.420

Contre-mesures

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined18

Exploitabilité

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined22

Vecteur d'accès

Not Defined0
Physical0
Local0
Adjacent2
Network20

Authentification

Not Defined0
High4
Low14
None4

Interaction de l'utilisateur

Not Defined0
Required14
None8

C3BM Index

CVSSv3 Base

≤10
≤20
≤34
≤410
≤54
≤60
≤72
≤82
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤34
≤410
≤54
≤60
≤72
≤82
≤90
≤100

VulDB

≤10
≤20
≤34
≤410
≤52
≤64
≤72
≤80
≤90
≤100

NVD

≤10
≤20
≤32
≤44
≤52
≤60
≤70
≤82
≤90
≤102

CNA

≤10
≤20
≤30
≤42
≤50
≤60
≤72
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k12
<2k10
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k22
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Versions (107): 5, 5.0.1, 5.0.2, 5.0.3, 5.0.4, 5.0.5, 5.0.6, 5.0.7, 5.0.8, 5.0.9, 5.0.11, 5.0.12, 5.0.13, 5.0.14, 5.0.15, 5.0.16, 5.0.17, 5.0.18, 5.0.19, 5.0.21, 5.0.22, 5.0.23, 5.0.24, 5.0.25, 5.0.26, 5.0.27, 5.0.28, 5.0.29, 5.0.31, 5.0.32, 5.0.33, 5.0.34, 5.0.35, 5.0.36, 5.0.37, 5.0.38, 5.0.39, 5.0.41, 6, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, 6.0.7, 6.0.8, 6.0.9, 6.0.11, 6.0.12, 6.0.13, 6.0.14, 6.0.15, 6.0.16, 6.0.17, 6.0.18, 6.0.19, 6.0.21, 6.0.22, 6.0.23, 6.0.24, 6.0.25, 6.0.26, 6.0.27, 6.0.28, 7, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.0.11, 7.0.12, 7.0.13, 7.0.14, 7.0.15, 7.0.16, 7.0.17, 7.0.18, 7.0.19, 7.0.21, 7.0.22, 7.0.23, 7.0.24, 7.0.25, 7.0.26, 7.0.27, 7.0.28, 8, 8.0.1, 8.0.2, 8.0.3, 8.0.4, 8.0.5, 8.0.6, 8.0.7, 8.0.8, 8.0.9, 8.0.11, 8.0.12, 8.0.13, 8.0.14, 8.0.15

Type de logiciel: Service Management Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
20/03/20235.25.1OTRS Community Edition Ticket Action Module cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-1248
20/03/20237.27.1OTRS Community Edition ACL Module elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-1250
19/12/20227.57.4OTRS Community Edition TicketSearch Webservice sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-4427
06/09/20213.53.5OTRS Community Edition Appointment Edit Screen cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36094
06/09/20212.72.7OTRS Community Edition Folder divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36096
06/09/20213.73.7OTRS Community Edition Lost Password divulgation de l'information$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36095
06/09/20215.35.3OTRS Community Edition Email dénie de service$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36093
26/07/20214.34.3OTRS Community Edition Email cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36092
26/07/20214.34.1OTRS Community Edition Calendar elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-36091
26/07/20213.53.4OTRS Community Edition Bulk Action Screen elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-21443

12 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 12 results.

plus d'entrées par Otrs

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!