exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-1772

почти 6 лет назад

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-1772

почти 6 лет назад

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-1772

почти 6 лет назад

It's possible to craft Lost Password requests with wildcards in the To ...

CVSS3: 6.5

EPSS: Низкий

GHSA-59rf-fq39-rh6x

больше 3 лет назад

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS3: 7.5

EPSS: Низкий

openSUSE-SU-2020:1475-1

больше 5 лет назад

Recommended update for otrs

EPSS: Низкий

openSUSE-SU-2020:0551-1

почти 6 лет назад

Recommended update for otrs

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-1772 It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.	CVSS3: 6.5	1% Низкий	почти 6 лет назад
CVE-2020-1772 It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.	CVSS3: 6.5	1% Низкий	почти 6 лет назад
CVE-2020-1772 It's possible to craft Lost Password requests with wildcards in the To ...	CVSS3: 6.5	1% Низкий	почти 6 лет назад
GHSA-59rf-fq39-rh6x It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.	CVSS3: 7.5	1% Низкий	больше 3 лет назад
openSUSE-SU-2020:1475-1 Recommended update for otrs			больше 5 лет назад
openSUSE-SU-2020:0551-1 Recommended update for otrs			почти 6 лет назад

Уязвимостей на страницу