CVE-2020-1774
published 2020-04-28CVE-2020-1774: When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. Therefore it's possible to mix them and to send…
PriorityP425medium4.9CVSS 3.1
AVNACLPRHUINSUCHINAN
EPSS
0.91%
55.5th percentile
When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. Therefore it's possible to mix them and to send private key to the third-party instead of public key. This issue affects ((OTRS)) Community Edition: 5.0.42 and prior versions, 6.0.27 and prior versions. OTRS: 7.0.16 and prior versions.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | otrs2 | < otrs2 6.0.28-1 (bullseye) | otrs2 6.0.28-1 (bullseye) |
| otrs | otrs | 5.0.0 – 5.0.42 | — |
| otrs | otrs | 6.0.0 – 6.0.27 | — |
| otrs | otrs | 7.0.0 – 7.0.16 | — |
| otrs_ag | community_edition | — | — |
| otrs_ag | community_edition | — | — |
| otrs_ag | otrs | — | — |
CVSS provenance
nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:P/I:N/A:N
osv4.9MEDIUM
vendor_debian4.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5g6p-jp4c-37q4: When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys
ghsa_unreviewed·2022-05-24
CVE-2020-1774 [MEDIUM] CWE-201 GHSA-5g6p-jp4c-37q4: When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys
When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. Therefore it's possible to mix them and to send private key to the third-party instead of public key. This issue affects ((OTRS)) Community Edition: 5.0.42 and prior versions, 6.0.27 and prior versions. OTRS: 7.0.16 and prior versions.
GHSA
Request logging bypass in Jenkins Audit Trail Plugin
ghsa·2022-02-10
CVE-2020-2287 [MEDIUM] CWE-435 Request logging bypass in Jenkins Audit Trail Plugin
Request logging bypass in Jenkins Audit Trail Plugin
Audit Trail Plugin logs requests whose URL path matches an admin-configured regular expression.
A discrepancy between the behavior of the plugin and the Stapler web framework in parsing URL paths allows attackers to craft URLs that would bypass request logging in Audit Trail Plugin 3.6 and earlier. This only applies to Jenkins 2.227 and earlier, LTS 2.204.5 and earlier, as the fix for [SECURITY-1774](https://www.jenkins.io/security/advisory/2020-03-25/#SECURITY-1774) prohibits dispatch of affected requests.
Audit Trail Plugin 3.7 processes request URL paths the same way as the Stapler web framework.
OSV
CVE-2020-1774: When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys
osv·2020-04-28·CVSS 4.9
CVE-2020-1774 [MEDIUM] CVE-2020-1774: When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys
When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. Therefore it's possible to mix them and to send private key to the third-party instead of public key. This issue affects ((OTRS)) Community Edition: 5.0.42 and prior versions, 6.0.27 and prior versions. OTRS: 7.0.16 and prior versions.
Debian
CVE-2020-1774: otrs2 - When user downloads PGP or S/MIME keys/certificates, exported file has same name...
vendor_debian·2020·CVSS 4.5
CVE-2020-1774 [MEDIUM] CVE-2020-1774: otrs2 - When user downloads PGP or S/MIME keys/certificates, exported file has same name...
When user downloads PGP or S/MIME keys/certificates, exported file has same name for private and public keys. Therefore it's possible to mix them and to send private key to the third-party instead of public key. This issue affects ((OTRS)) Community Edition: 5.0.42 and prior versions, 6.0.27 and prior versions. OTRS: 7.0.16 and prior versions.
Scope: local
bullseye: resolved (fixed in 6.0.28-1)
No detection rules found.
No public exploits indexed.
arXiv
Secure Email Transmission Protocols -- A New Architecture Design
arxiv_fulltext·2022-07-31
Secure Email Transmission Protocols -- A New Architecture Design
Secure Email Transmission Protocols
— A New Architecture Design
Gabriel Chen
University of Illinois Urbana Champaign
[email protected]
Rick Wanner
SANS Institute
[email protected]
## Abstract
During today’s digital age, emails have become a crucial part of communications for both personal and enterprise usage. However, email transmission protocols were not designed with security in mind, and this has always been a challenge while trying to make email transmission more secure. On top of the basic layer of SMTP, POP3, and IMAP protocols to send and retrieve emails, there are several other major security protocols used in current days to secure email transmission such as TLS/SSL, STARTTLS, and PGP/GPG encryption. The most general design used in email transmission architecture is SMTP
Bugzilla
CVE-2020-2160 jenkins: CSRF protection bypass via crafted URLs
bugzilla·2020-03-31·CVSS 8.8
CVE-2020-2160 [HIGH] CVE-2020-2160 jenkins: CSRF protection bypass via crafted URLs
CVE-2020-2160 jenkins: CSRF protection bypass via crafted URLs
A vulnerability was found in Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.
Reference:
http://www.openwall.com/lists/oss-security/2020/03/25/2
Discussion:
External References:
https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774
https://lists.debian.org/debian-lts-announce/2020/05/msg00000.htmlhttps://lists.debian.org/debian-lts-announce/2023/08/msg00040.htmlhttps://otrs.com/release-notes/otrs-security-advisory-2020-11/https://lists.debian.org/debian-lts-announce/2020/05/msg00000.htmlhttps://lists.debian.org/debian-lts-announce/2023/08/msg00040.htmlhttps://otrs.com/release-notes/otrs-security-advisory-2020-11/
2020-04-28
Published