CVE-2018-19141

Опубликовано: 11 нояб. 2018

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 3.5

CVSS3: 4.8

Описание

Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.

Релиз	Статус	Примечание
bionic	not-affected	6.0.5-1
cosmic	not-affected
devel	DNE
disco	not-affected
eoan	not-affected
esm-apps/bionic	not-affected	6.0.5-1
esm-apps/focal	not-affected
esm-apps/jammy	not-affected
esm-apps/xenial	needed
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needs-triage]

Показывать по

Ссылки на источники

EPSS

Процентиль: 50%

0.00269

Низкий

3.5 Low

CVSS2

4.8 Medium

CVSS3

Связанные уязвимости

CVE-2018-19141

CVSS3: 4.8

nvd

около 7 лет назад

Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.

CVE-2018-19141

CVSS3: 4.8

debian

около 7 лет назад

Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before ...

GHSA-5j7r-jxpc-qhpw

CVSS3: 4.8

github

больше 3 лет назад

Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.

openSUSE-SU-2018:4046-1

suse-cvrf

около 7 лет назад

Security update for otrs

EPSS

Процентиль: 50%

0.00269

Низкий

3.5 Low

CVSS2

4.8 Medium

CVSS3

CVE-2018-19141

Описание

Пакет otrs2

Ссылки на источники

Связанные уязвимости