Otrs Help Desk vulnerabilities
2 known vulnerabilities affecting otrs/otrs_help_desk.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2013-2625MEDIUMCVSS 6.5≥ 3.0.0, < 3.0.19≥ 3.1.0, < 3.1.14+1 more2019-11-27
CVE-2013-2625 [MEDIUM] CWE-269 CVE-2013-2625: An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3
An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified
nvd
CVE-2014-9324MEDIUMCVSS 6.0v3.2.0v3.2.1+29 more2014-12-19
CVE-2014-9324 [MEDIUM] CWE-264 CVE-2014-9324: The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.
The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access and modify arbitrary tickets via unspecified vectors.
nvd