CVE-2011-2746
published 2011-08-29CVE-2011-2746: Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10…
PriorityP423medium4CVSS 2.0
AVNACLAuSCPINAN
EPSS
1.74%
74.9th percentile
Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators to read arbitrary files via unknown vectors.
Affected
55 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | otrs2 | < otrs2 2.4.7-1 (bullseye) | otrs2 2.4.7-1 (bullseye) |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
| otrs | otrs | — | — |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
osv4.0MEDIUM
vendor_debian4.0LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2011-2746: otrs2 - Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core ...
vendor_debian·2011·CVSS 4.0
CVE-2011-2746 [MEDIUM] CVE-2011-2746: otrs2 - Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core ...
Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators to read arbitrary files via unknown vectors.
Scope: local
bullseye: resolved (fixed in 2.4.7-1)
GHSA
GHSA-j4fp-pv59-4m67: Unspecified vulnerability in Kernel/Modules/AdminPackageManager
ghsa_unreviewed·2022-05-17
CVE-2011-2746 [MEDIUM] GHSA-j4fp-pv59-4m67: Unspecified vulnerability in Kernel/Modules/AdminPackageManager
Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators to read arbitrary files via unknown vectors.
OSV
CVE-2011-2746: Unspecified vulnerability in Kernel/Modules/AdminPackageManager
osv·2011-08-29·CVSS 4.0
CVE-2011-2746 [MEDIUM] CVE-2011-2746: Unspecified vulnerability in Kernel/Modules/AdminPackageManager
Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators to read arbitrary files via unknown vectors.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.opensuse.org/opensuse-updates/2011-09/msg00011.htmlhttp://otrs.org/advisory/OSA-2011-03-en/http://secunia.com/advisories/45701http://secunia.com/advisories/45894http://www.osvdb.org/74602http://www.securityfocus.com/bid/49251http://lists.opensuse.org/opensuse-updates/2011-09/msg00011.htmlhttp://otrs.org/advisory/OSA-2011-03-en/http://secunia.com/advisories/45701http://secunia.com/advisories/45894http://www.osvdb.org/74602http://www.securityfocus.com/bid/49251
2011-08-29
Published