exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2008-7277

больше 14 лет назад

Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets.

CVSS2: 6.5

EPSS: Низкий

CVE-2008-7277

больше 14 лет назад

Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets.

CVSS2: 6.5

EPSS: Низкий

CVE-2008-7277

больше 14 лет назад

Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw ...

CVSS2: 6.5

EPSS: Низкий

GHSA-3frj-7j4q-xc89

больше 3 лет назад

Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets.

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2008-7277 Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets.	CVSS2: 6.5	0% Низкий	больше 14 лет назад
CVE-2008-7277 Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets.	CVSS2: 6.5	0% Низкий	больше 14 лет назад
CVE-2008-7277 Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw ...	CVSS2: 6.5	0% Низкий	больше 14 лет назад
GHSA-3frj-7j4q-xc89 Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authenticated users to bypass intended access restrictions by merging two tickets.		0% Низкий	больше 3 лет назад

Уязвимостей на страницу