Otrs Luki w zabezpieczeniach

Oś czasu

Rodzaj

Service Management Software	28
Survey Software	2

Produkt

OTRS Community Edition	28
OTRS Survey	2

Przeciwdziałanie

Official Fix	8
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	22

Wykorzystywanie

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	30

Wektor dostępu

Not Defined	0
Physical	0
Local	0
Adjacent	2
Network	28

Uwierzytelnianie

Not Defined	0
High	6
Low	12
None	12

Interakcja z użytkownikiem

Not Defined	0
Required	20
None	10

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	4
≤4	6
≤5	12
≤6	6
≤7	0
≤8	2
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	4
≤4	6
≤5	12
≤6	6
≤7	0
≤8	2
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	6
≤4	6
≤5	8
≤6	8
≤7	2
≤8	0
≤9	0
≤10	0

NVD

≤1	0
≤2	2
≤3	0
≤4	6
≤5	2
≤6	0
≤7	2
≤8	0
≤9	0
≤10	2

CNA

≤1	0
≤2	2
≤3	0
≤4	4
≤5	0
≤6	0
≤7	4
≤8	0
≤9	0
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	16
<2k	12
<5k	2
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	30
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Products (10): Community Edition (22), FAQ (1), Help Desk (1), Help Desk before (1), ITSM (1), OTRSCIsInCustomerFrontend (1), OTRSTicketForms (1), Open Ticket Request System (2), Survey (1), Time Accounting (1)

Opublikowano	Base	Temp	Słaby punkt	Prod	Wyk	Prz	EPSS	CTI	CVE
2023-03-20	5.2	5.1	OTRS Community Edition Ticket Action Module cross site scripting	Service Management Software	Not Defined	Official Fix	0.00063	0.05	CVE-2023-1248
2023-03-20	7.2	7.1	OTRS Community Edition ACL Module privilege escalation	Service Management Software	Not Defined	Official Fix	0.00042	0.03	CVE-2023-1250
2022-12-19	7.5	7.4	OTRS Community Edition TicketSearch Webservice sql injection	Service Management Software	Not Defined	Official Fix	0.00132	0.00	CVE-2022-4427
2021-09-06	3.5	3.5	OTRS Community Edition Appointment Edit Screen cross site scripting	Service Management Software	Not Defined	Not Defined	0.00054	0.00	CVE-2021-36094
2021-09-06	2.7	2.7	OTRS Community Edition Folder information disclosure	Service Management Software	Not Defined	Not Defined	0.00065	0.00	CVE-2021-36096
2021-09-06	3.7	3.7	OTRS Community Edition Lost Password information disclosure	Service Management Software	Not Defined	Not Defined	0.00073	0.00	CVE-2021-36095
2021-09-06	5.3	5.3	OTRS Community Edition Email denial of service	Service Management Software	Not Defined	Not Defined	0.00085	0.00	CVE-2021-36093
2021-08-10	3.5	3.4	OTRS Open Ticket Request System cross site scripting	Ticket Tracking Software	Not Defined	Official Fix	0.00066	0.00	CVE-2013-4718
2021-08-10	6.3	6.0	OTRS Open Ticket Request System PreferencesCustomQueue.pm sql injection	Ticket Tracking Software	Not Defined	Official Fix	0.00110	0.00	CVE-2013-4717
2021-07-26	4.3	4.3	OTRS Community Edition Email cross site scripting	Service Management Software	Not Defined	Not Defined	0.00078	0.00	CVE-2021-36092

20 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 20 results.

◂ PoprzedniPrzeglądKolejny ▸

Might our Artificial Intelligence support you?

Check our Alexa App!