Otrs Ag Otrs vulnerabilities

CVE-2025-24391 [MEDIUM] CWE-203 CVE-2025-24391: A vulnerability in the External Interface of OTRS allows conclusions to be drawn about the existence A vulnerability in the External Interface of OTRS allows conclusions to be drawn about the existence of user accounts through different HTTP response codes and messages. This enables an attacker to systematically identify valid email addresses. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * OTRS 2025.X

CVE-2025-24388 [LOW] CWE-184 CVE-2025-24388: A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow param A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * OTRS 2025.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very l

CVE-2025-24387 [MEDIUM] CWE-1275 CVE-2025-24387: A vulnerability in OTRS Application Server allows session hijacking due to missing attributes for se A vulnerability in OTRS Application Server allows session hijacking due to missing attributes for sensitive cookie settings in HTTPS sessions. A request to an OTRS endpoint from a possible malicious web site, would send the authentication cookie, performing an unwanted read operation. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X *

CVE-2024-43445 [MEDIUM] CWE-20 CVE-2024-43445: A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response hea A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 20

CVE-2025-24389 [MEDIUM] CWE-532 CVE-2025-24389: Certain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) C Certain errors of the upstream libraries will insert sensitive information in the OTRS or ((OTRS)) Community Edition log mechanism and mails send to the system administrator. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very li

CVE-2025-24390 [MEDIUM] CWE-614 CVE-2025-24390: A vulnerability in OTRS Application Server and reverse proxy settings allows session hijacking due t A vulnerability in OTRS Application Server and reverse proxy settings allows session hijacking due to missing attributes for sensitive cookie settings in HTTPS sessions. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X

CVE-2024-43446 [LOW] CWE-269 CVE-2024-43446: An improper privilege management vulnerability in OTRS Generic Interface module allows change of the An improper privilege management vulnerability in OTRS Generic Interface module allows change of the Ticket status even if the user only has ro permissions. This issue affects: * OTRS 7.0.X * OTRS 8.0.X * OTRS 2023.X * OTRS 2024.X * ((OTRS)) Community Edition: 6.0.x Products based on the ((OTRS)) Community Edition also very likely to be affected

CVE-2024-43444 [HIGH] CWE-532 CVE-2024-43444: Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certai Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 2024.X through 2024.5.X * ((OTRS)) C

CVE-2024-43443 [MEDIUM] CWE-790 CVE-2024-43443: Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') in Process Management modules of OTRS and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the Process Management targeting other admins. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from 20

CVE-2024-43442 [MEDIUM] CWE-790 CVE-2024-43442: Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') Improper Neutralization of Input done by an attacker with admin privileges ('Cross-site Scripting') in OTRS (System Configuration modules) and ((OTRS)) Community Edition allows Cross-Site Scripting (XSS) within the System Configuration targeting other admins. This issue affects: * OTRS from 7.0.X through 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS from

CVE-2024-23794 [HIGH] CWE-266 CVE-2024-23794: An incorrect privilege assignment vulnerability in the inline editing functionality of OTRS can lead An incorrect privilege assignment vulnerability in the inline editing functionality of OTRS can lead to privilege escalation. This flaw allows an agent with read-only permissions to gain full access to a ticket. This issue arises in very rare instances when an admin has previously enabled the setting 'RequiredLock' of 'AgentFrontend::Ticket::InlineEdi

CVE-2024-6540 [MEDIUM] CWE-790 CVE-2024-6540: Improper filtering of fields when using the export function in the ticket overview of the external i Improper filtering of fields when using the export function in the ticket overview of the external interface in OTRS could allow an authorized user to download a list of tickets containing information about tickets of other customers. The problem only occurs if the TicketSearchLegacyEngine has been disabled by the administrator. This issue affects OTR

CVE-2024-23793 [MEDIUM] CWE-22 CVE-2024-23793: The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. T The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts. This issue affects OTRS: from 7.0.X through

CVE-2024-23790 [CRITICAL] CWE-20 CVE-2024-23790: Improper Input Validation vulnerability in the upload functionality for user avatars allows function Improper Input Validation vulnerability in the upload functionality for user avatars allows functionality misuse due to missing check of filetypes. This issue affects OTRS: from 7.0.X through 7.0.48, from 8.0.X through 8.0.37, from 2023 through 2023.1.1.

CVE-2024-23791 [HIGH] CWE-532 CVE-2024-23791: Insertion of debug information into log file during building the elastic search index allows reading Insertion of debug information into log file during building the elastic search index allows reading of sensitive information from articles.This issue affects OTRS: from 7.0.X through 7.0.48, from 8.0.X through 8.0.37, from 2023.X through 2023.1.1.

CVE-2024-23792 [MEDIUM] CWE-287 CVE-2024-23792: When adding attachments to ticket comments, another user can add attachments as well impersonating When adding attachments to ticket comments, another user can add attachments as well impersonating the orginal user. The attack requires a logged-in other user to know the UUID. While the legitimate user completes the comment, the malicious user can add more files to the comment. This issue affects OTRS: from 7.0.X through 7.0.48, from 8.0.X through

CVE-2023-6254 [HIGH] CWE-522 CVE-2023-6254: A Vulnerability in OTRS AgentInterface and ExternalInterface allows the reading of plain text passwo A Vulnerability in OTRS AgentInterface and ExternalInterface allows the reading of plain text passwords which are send back to the client in the server response- This issue affects OTRS: from 8.0.X through 8.0.37.

CVE-2023-5422 [CRITICAL] CWE-295 CVE-2023-5422: The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for st The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static SSL or TLS based communication. As the SSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate satisfies all necessary security requirements. This could allow an attacker to

CVE-2023-38059 [MEDIUM] CWE-200 CVE-2023-38059: The loading of external images is not blocked, even if configured, if the attacker uses protocol-rel The loading of external images is not blocked, even if configured, if the attacker uses protocol-relative URL in the payload. This can be used to retreive the IP of the user.This issue affects OTRS: from 7.0.X before 7.0.47, from 8.0.X before 8.0.37; ((OTRS)) Community Edition: from 6.0.X through 6.0.34.

CVE-2023-5421 [MEDIUM] CWE-20 CVE-2023-5421: An attacker who is logged into OTRS as an user with privileges to create and change customer user da An attacker who is logged into OTRS as an user with privileges to create and change customer user data may manipulate the CustomerID field to execute JavaScript code that runs immediatly after the data is saved.The issue onlyoccurs if the configuration for AdminCustomerUser::UseAutoComplete was changed before. This issue affects OTRS: from 7.0.X before