CVE-2020-1772 — Improper Neutralization of Wildcards or Matching Symbols in AG Community Edition

CWE-155 — Improper Neutralization of Wildcards or Matching Symbols5 documents5 sources

Severity

7.5HIGHNVD

CNA6.5

EPSS

0.4%

top 36.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Otrs AG Community Edition Otrs AG Otrs Otrs +3 more

Timeline

PublishedMar 27

Latest updateMay 24

Description

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

▶CVEListV5otrs_ag/community_edition5.0.x — 5.0.41+1

▶NVDotrs/otrs5.0.0 — 5.0.41+2

▶CVEListV5otrs_ag/otrs7.0.x — 7.0.15

▶NVDopensuse/leap15.1, 15.2+1

▶NVDopensuse/backports_sle15.0

Also affects: Debian Linux 8.0

Patches

Patch: otrs.com ↗Patch: otrs.com ↗

🔴Vulnerability Details

GHSA

GHSA-59rf-fq39-rh6x: It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users↗2022-05-24

▶

CVEList

Information Disclosure↗2020-03-27

▶

OSV

CVE-2020-1772: It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users↗2020-03-27

▶

📋Vendor Advisories

Debian

CVE-2020-1772: otrs2 - It's possible to craft Lost Password requests with wildcards in the Token value,...↗2020

▶