CVE-2021-36095 — Sensitive Information Exposure in AG Community Edition

CWE-200 — Sensitive Information Exposure CWE-640 — Weak Password Recovery Mechanism for Forgotten Password4 documents4 sources

Severity

5.3MEDIUMNVD

EPSS

0.3%

top 51.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Otrs AG Community Edition Otrs Otrs AG Otrs

Timeline

PublishedSep 6

Latest updateMay 24

Description

Malicious attacker is able to find out valid user logins by using the "lost password" feature. This issue affects: OTRS AG ((OTRS)) Community Edition version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages3 packages

▶CVEListV5otrs_ag/community_edition6.0.1 — unspecified

▶NVDotrs/otrs7.0.0 — 7.0.29+1

▶CVEListV5otrs_ag/otrs7.0.x — 7.0.28

🔴Vulnerability Details

GHSA

GHSA-mgr7-vch3-x89h: Malicious attacker is able to find out valid user logins by using the "lost password" feature↗2022-05-24

▶

OSV

CVE-2021-36095: Malicious attacker is able to find out valid user logins by using the "lost password" feature↗2021-09-06

▶

CVEList

User enumeration issue using "lost password" feature↗2021-09-06

▶