ad-password arrow-down-ring arrow-left arrow-right auto-select cog customer-id excel-statistics external-link featured github icn-admin icn-developer icn-evaluierung icn-installation icn-keyuser icn-konzeptionierung icn-master icn-performance icn-review last-contact linkedin map-person messages multi-upload no-eye out-of-office password-guidlines pending-time phone plus proxy-support quick-close search service-catalog setting-search shield sugarcrm-integration tag-cloud ticket-create twitter watch-arrow watchlist xing

Znuny Sicherheitswarnungen für OTRS

Hier finden Sie eine Übersicht über die vorhandenen Sicherheitswarnungen zu OTRS.

# Title CVE Severity Date
ZSA-2019-10 Agents and customer users can create articles containing malicious JavaScript CVE-2019-16375 Low 04.10.2019
ZSA-2019-09 OTRS agent might unwillingly disclose session ID CVE-2019-12746 Low 12.07.2019
ZSA-2019-08 Tags in templates can be used to disclose sensitive information CVE-2019-13458 Low 12.07.2019
ZSA-2019-07 Disclosure of personal agent information in customer frontend. CVE-2019-12497 Low 31.05.2019
ZSA-2019-06 Malicious email can cause browser to load external files. CVE-2019-12248 Low 31.05.2019
ZSA-2019-05 Execution of arbitrary Javascript code via OTRS appointment calendar CVE-2019-10066 Low 26.04.2019
ZSA-2019-04 Execution of arbitrary Javascript code via URL manipulation CVE-2019-10067 Low 26.04.2019
ZSA-2019-03 Importing statistics XML can lead to reading arbitrary files of OTRS file system CVE-2019-9892 Medium 26.04.2019
ZSA-2019-02 Privilege escalation using a manipulated URL to execute JavaScript code CVE-2019-9751 Low 11.03.2019
ZSA-2019-01 Privilege escalation in picture upload CVE-2019-9752 Low 18.01.2019
ZSA-2018-08 Privilege escalation using HTML Form-Params CVE-2012-2582 High 09.11.2018
ZSA-2012-02 XSS attack in Firefox and Opera possible CVE-2012-4600 Critical 30.08.2012