Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-1776

Опубликовано: 20 июл. 2020
Источник: nvd
CVSS3: 3.5
CVSS3: 4.3
CVSS2: 4
EPSS Низкий

Описание

When an agent user is renamed or set to invalid the session belonging to the user is keept active. The session can not be used to access ticket data in the case the agent is invalid. This issue affects ((OTRS)) Community Edition: 6.0.28 and prior versions. OTRS: 7.0.18 and prior versions, 8.0.4. and prior versions.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:*
Версия до 6.0.29 (исключая)
cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*
Версия от 7.0.0 (включая) до 7.0.19 (исключая)
cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*
Версия от 8.0.1 (включая) до 8.0.5 (исключая)

EPSS

Процентиль: 43%
0.00208
Низкий

3.5 Low

CVSS3

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-613
CWE-613

Связанные уязвимости

ubuntu логотип

CVE-2020-1776

CVSS3: 3.5
ubuntu
больше 5 лет назад

When an agent user is renamed or set to invalid the session belonging to the user is keept active. The session can not be used to access ticket data in the case the agent is invalid. This issue affects ((OTRS)) Community Edition: 6.0.28 and prior versions. OTRS: 7.0.18 and prior versions, 8.0.4. and prior versions.

debian логотип

CVE-2020-1776

CVSS3: 3.5
debian
больше 5 лет назад

When an agent user is renamed or set to invalid the session belonging ...

github логотип

GHSA-vcrm-8v3j-v6f3

CVSS3: 4.3
github
больше 3 лет назад

When an agent user is renamed or set to invalid the session belonging to the user is keept active. The session can not be used to access ticket data in the case the agent is invalid. This issue affects ((OTRS)) Community Edition: 6.0.28 and prior versions. OTRS: 7.0.18 and prior versions, 8.0.4. and prior versions.

EPSS

Процентиль: 43%
0.00208
Низкий

3.5 Low

CVSS3

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-613
CWE-613