Количество 6
Количество 6
CVE-2020-1773
An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS; 7.0.15 and prior versions.
CVE-2020-1773
An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS; 7.0.15 and prior versions.
CVE-2020-1773
An attacker with the ability to generate session IDs or password reset ...
GHSA-63m6-fqgg-rv45
It's possible that an authenticated user guess other session IDs based on its own. Also it's possible to guess a password reset token or an automated password generated. This issue affects ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS; 7.0.15 and prior versions.
openSUSE-SU-2020:1475-1
Recommended update for otrs
openSUSE-SU-2020:0551-1
Recommended update for otrs
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-1773 An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS; 7.0.15 and prior versions. | CVSS3: 7.3 | 1% Низкий | почти 6 лет назад |
 | CVE-2020-1773 An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS; 7.0.15 and prior versions. | CVSS3: 7.3 | 1% Низкий | почти 6 лет назад |
| CVE-2020-1773 An attacker with the ability to generate session IDs or password reset ... | CVSS3: 7.3 | 1% Низкий | почти 6 лет назад |
| GHSA-63m6-fqgg-rv45 It's possible that an authenticated user guess other session IDs based on its own. Also it's possible to guess a password reset token or an automated password generated. This issue affects ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS; 7.0.15 and prior versions. | CVSS3: 8.1 | 1% Низкий | больше 3 лет назад |
 | openSUSE-SU-2020:1475-1 Recommended update for otrs | больше 5 лет назад | ||
| openSUSE-SU-2020:0551-1 Recommended update for otrs | почти 6 лет назад |
Уязвимостей на страницу