Vulnerabilidades em OTRS AG
81 resultadosCVE-2021-21440MEDIUMSupport Bundle includes S/Mime and PGP keysEPSS 0.8%CVE-2023-38056HIGHCode execution via System Configuration EPSS 0.8%CVE-2022-32741MEDIUMInformation disclosure in Request New Password featureEPSS 0.8%CVE-2024-23793MEDIUMUpload of files outside application directoryEPSS 0.8%CVE-2021-21436LOWAgent is able to link customer's Config Items without permissionEPSS 0.8%CVE-2020-1768MEDIUMExternal Interface does not invalidate sessionEPSS 0.7%CVE-2021-36091LOWUnautorized access to the calendar appointmentsEPSS 0.7%CVE-2021-36092MEDIUMXSS attack using special link in emailEPSS 0.7%CVE-2022-32739LOWOTRS version number is always in the exported ICS filesEPSS 0.7%CVE-2022-4427MEDIUMSQL Injection via OTRS Search APIEPSS 0.7%CVE-2022-32740LOWInformation disclosure in the External InterfaceEPSS 0.7%CVE-2022-39051MEDIUMPerl Code execution in Template ToolkitEPSS 0.7%CVE-2021-21437LOWConfig Items are shown to users without permissionEPSS 0.7%CVE-2021-21434LOWXSS in Survey ModuleEPSS 0.7%CVE-2023-6254HIGHPassword is send back to clientEPSS 0.7%CVE-2020-1778MEDIUMBypassing user account validationEPSS 0.6%CVE-2021-21438LOWFAQ articles are shown to users without permissionEPSS 0.6%CVE-2022-0474LOWDisclosure of mail addressesEPSS 0.6%CVE-2021-21442MEDIUMXSS vulnerability in Time AccountingEPSS 0.6%CVE-2022-1004MEDIUMInformation disclosure in the External InterfaceEPSS 0.6%