Otrs Community Edition Vulnerabilità

Sequenza temporale

Versione

7.0.022
7.0.122
7.0.222
7.0.322
7.0.422

Contromisure

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined18

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined22

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent2
Network20

Autenticazione

Not Defined0
High6
Low12
None4

Interazione dell'utente

Not Defined0
Required12
None10

C3BM Index

CVSSv3 Base

≤10
≤20
≤36
≤44
≤58
≤62
≤72
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤36
≤44
≤58
≤62
≤72
≤80
≤90
≤100

VulDB

≤10
≤20
≤36
≤46
≤54
≤66
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤32
≤46
≤50
≤60
≤72
≤82
≤90
≤100

CNA

≤10
≤20
≤30
≤42
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k10
<2k8
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k22
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (107): 5, 5.0.1, 5.0.2, 5.0.3, 5.0.4, 5.0.5, 5.0.6, 5.0.7, 5.0.8, 5.0.9, 5.0.11, 5.0.12, 5.0.13, 5.0.14, 5.0.15, 5.0.16, 5.0.17, 5.0.18, 5.0.19, 5.0.21, 5.0.22, 5.0.23, 5.0.24, 5.0.25, 5.0.26, 5.0.27, 5.0.28, 5.0.29, 5.0.31, 5.0.32, 5.0.33, 5.0.34, 5.0.35, 5.0.36, 5.0.37, 5.0.38, 5.0.39, 5.0.41, 6, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, 6.0.7, 6.0.8, 6.0.9, 6.0.11, 6.0.12, 6.0.13, 6.0.14, 6.0.15, 6.0.16, 6.0.17, 6.0.18, 6.0.19, 6.0.21, 6.0.22, 6.0.23, 6.0.24, 6.0.25, 6.0.26, 6.0.27, 6.0.28, 7, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.0.11, 7.0.12, 7.0.13, 7.0.14, 7.0.15, 7.0.16, 7.0.17, 7.0.18, 7.0.19, 7.0.21, 7.0.22, 7.0.23, 7.0.24, 7.0.25, 7.0.26, 7.0.27, 7.0.28, 8, 8.0.1, 8.0.2, 8.0.3, 8.0.4, 8.0.5, 8.0.6, 8.0.7, 8.0.8, 8.0.9, 8.0.11, 8.0.12, 8.0.13, 8.0.14, 8.0.15

Tipo di software: Service Management Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
20/03/20235.25.1OTRS Community Edition Ticket Action Module cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-1248
20/03/20237.27.1OTRS Community Edition ACL Module escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-1250
19/12/20227.57.4OTRS Community Edition TicketSearch Webservice sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-4427
06/09/20213.53.5OTRS Community Edition Appointment Edit Screen cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36094
06/09/20212.72.7OTRS Community Edition Folder rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36096
06/09/20213.73.7OTRS Community Edition Lost Password rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36095
06/09/20215.35.3OTRS Community Edition Email denial of service$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36093
26/07/20214.34.3OTRS Community Edition Email cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-36092
26/07/20214.34.1OTRS Community Edition Calendar escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-36091
26/07/20213.53.4OTRS Community Edition Bulk Action Screen escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-21443

12 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 12 results.

altre voci di Otrs

PrecedenteVisione D'insiemeIl prossimo

Interested in the pricing of exploits?

See the underground prices here!