CVE-2020-1766 — Cross-site Scripting in Otrs

CWE-79 — Cross-site Scripting CWE-787 — Out-of-bounds Write6 documents6 sources

Severity

6.1MEDIUMNVD

CNA2.0

EPSS

0.8%

top 26.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Otrs Otrs AG Community Edition Otrs AG Otrs +1 more

Timeline

PublishedJan 10

Latest updateMay 24

Description

Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javascript from a special crafted SVG file rendered as inline jpg file. This issue affects: ((OTRS)) Community Edition 5.0.x version 5.0.39 and prior versions; 6.0.x version 6.0.24 and prior versions. OTRS 7.0.x version 7.0.13 and prior versions.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages3 packages

▶CVEListV5otrs_ag/community_edition5.0.x version 5.0.39 and prior versions, 6.0.x version 6.0.24 and prior versions+1

▶NVDotrs/otrs5.0.0 — 5.0.39+2

▶CVEListV5otrs_ag/otrs7.0.x version 7.0.13 and prior versions

Also affects: Debian Linux 8.0

Patches

Patch: otrs.com ↗Patch: otrs.com ↗

🔴Vulnerability Details

GHSA

GHSA-m842-x755-qmxc: Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javas↗2022-05-24

▶

CVEList

Improper handling of uploaded inline images↗2020-01-10

▶

OSV

CVE-2020-1766: Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious javas↗2020-01-10

▶

📋Vendor Advisories

Red Hat

libsolv: Heap overflow↗2022-02-21

▶

Debian

CVE-2020-1766: otrs2 - Due to improper handling of uploaded images it is possible in very unlikely and ...↗2020

▶