Описание
Open Ticket Request System (OTRS) 4.0.x before 4.0.33, 5.0.x before 5.0.31, and 6.0.x before 6.0.13 allows an authenticated user to delete files via a modified submission form because upload caching is mishandled.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | DNE | |
| disco | not-affected | 6.0.13-1 |
| eoan | not-affected | 6.0.13-1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | not-affected | 6.0.13-1 |
| esm-apps/jammy | not-affected | 6.0.13-1 |
| esm-apps/xenial | needed | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needs-triage] |
Показывать по
5.5 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Open Ticket Request System (OTRS) 4.0.x before 4.0.33, 5.0.x before 5.0.31, and 6.0.x before 6.0.13 allows an authenticated user to delete files via a modified submission form because upload caching is mishandled.
Open Ticket Request System (OTRS) 4.0.x before 4.0.33, 5.0.x before 5. ...
Open Ticket Request System (OTRS) 4.0.x before 4.0.33, 5.0.x before 5.0.31, and 6.0.x before 6.0.13 allows an authenticated user to delete files via a modified submission form because upload caching is mishandled.
5.5 Medium
CVSS2
6.5 Medium
CVSS3