exploitDog

CVE-2020-1769

Опубликовано: 27 мар. 2020

Источник: debian

Описание

In the login screens (in agent and customer interface), Username and Password fields use autocomplete, which might be considered as security issue. This issue affects: ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
otrs2	fixed	6.0.27-1		package
otrs2	ignored		stretch	package
otrs2	no-dsa		jessie	package

Примечания

https://otrs.com/release-notes/otrs-security-advisory-2020-06/
Fixed in 7.0.16, 6.0.27, 5.0.42
OTRS6: https://github.com/OTRS/otrs/commit/1b74e24582c946d02209acfc248d4ba451251f93
OTRS5: https://github.com/OTRS/otrs/commit/7974ea582211c13730d223fc4dcdffa542af423f

Связанные уязвимости

CVE-2020-1769

CVSS3: 3.5

ubuntu

почти 6 лет назад

In the login screens (in agent and customer interface), Username and Password fields use autocomplete, which might be considered as security issue. This issue affects: ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVE-2020-1769

CVSS3: 3.5

nvd

почти 6 лет назад

In the login screens (in agent and customer interface), Username and Password fields use autocomplete, which might be considered as security issue. This issue affects: ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

GHSA-xfh6-pvv6-h7qg

CVSS3: 4.3

github

больше 3 лет назад

In the login screens (in agent and customer interface), Username and Password fields use autocomplete, which might be considered as security issue. This issue affects: ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

openSUSE-SU-2020:1475-1

suse-cvrf

больше 5 лет назад

Recommended update for otrs

openSUSE-SU-2020:0551-1

suse-cvrf

почти 6 лет назад

Recommended update for otrs