CVE-2011-2746Otrs vulnerability

4 documents4 sources
Severity
4.0MEDIUMNVD
EPSS
0.4%
top 37.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Debian Otrs2Otrs
Timeline
PublishedAug 29
Latest updateMay 17

Description

Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators to read arbitrary files via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

debiandebian/otrs2< otrs2 2.4.7-1 (bullseye)
NVDotrs/otrs54 versions+53

🔴Vulnerability Details

2
GHSA
GHSA-j4fp-pv59-4m67: Unspecified vulnerability in Kernel/Modules/AdminPackageManager2022-05-17
OSV
CVE-2011-2746: Unspecified vulnerability in Kernel/Modules/AdminPackageManager2011-08-29

📋Vendor Advisories

1
Debian
CVE-2011-2746: otrs2 - Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core ...2011
CVE-2011-2746 — Otrs vulnerability | cvebase