This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Otrs First view 2014-12-19
Product Otrs Help Desk Last view 2019-11-27
Version 3.2.0 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:otrs:otrs_help_desk

Activity : Overall

Related : CVE

  Date Alert Description
6.5 2019-11-27 CVE-2013-2625

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified

6 2014-12-19 CVE-2014-9324

The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access and modify arbitrary tickets via unspecified vectors.

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-269 Improper Privilege Management
50% (1) CWE-264 Permissions, Privileges, and Access Controls

Nessus® Vulnerability Scanner

id Description
2015-02-11 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2015-043.nasl - Type: ACT_GATHER_INFO
2015-01-26 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2015-53.nasl - Type: ACT_GATHER_INFO
2015-01-12 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3124.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_0c5cf7c4856e11e4a08960a44c524f57.nasl - Type: ACT_GATHER_INFO
2014-06-13 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2013-639.nasl - Type: ACT_GATHER_INFO
2013-08-05 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-2733.nasl - Type: ACT_GATHER_INFO
2013-04-08 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_eae8e3cf9dfe11e2ac7f001fd056c417.nasl - Type: ACT_GATHER_INFO