otrs ag Latest Vulnerabilities
Latest vulnerabilities published by otrs ag
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Resource Management Flaw in OTRS E-mail Handling by OTRS
CVE-2026-48187Otrs AgOtrs5.7MEDIUMImproper Input Validation Vulnerability in OTRS and OTRS Community Edition
CVE-2026-48188Otrs AgOtrs9.1CRITICALImproper Input Validation in OTRS Customer Backend Module
CVE-2026-48189Otrs AgOtrs5.7MEDIUMIncorrect Permission Handling in OTRS Affects Multiple Versions
CVE-2026-48190Otrs AgOtrs3.5LOWPermission Handling Flaw in OTRS and STORM Modules
CVE-2026-48191Otrs AgOtrs3.5LOWImproper SVG Content Neutralization in OTRS Affects Multiple Versions
CVE-2026-48208Otrs AgOtrs6.5MEDIUMReflected Cross-Site Scripting Vulnerability in OTRS by OTRS
CVE-2026-48209Otrs AgOtrs7.1HIGHImproper Configuration in OTRS 2026.3.1 Exposes Ticket Information
CVE-2026-48210Otrs AgOtrs5.7MEDIUMUncontrolled Resource Consumption in OTRS Admin Interface
CVE-2026-6060Otrs AgOtrs4.5MEDIUMInformation Disclosure Vulnerability in OTRS by OTRS AG
CVE-2025-24391Otrs AgOtrs5.3MEDIUMParameter Injection Vulnerability in OTRS Admin and Agent Interface
CVE-2025-24388Otrs AgOtrs3.8LOWSession Hijacking Vulnerability in OTRS Application Server
CVE-2025-24387Otrs AgOtrs6.5MEDIUMSession Hijacking Vulnerability in OTRS Application Server
CVE-2025-24390Otrs AgOtrs6.8MEDIUMLog Information Disclosure in OTRS by OTRS AG
CVE-2025-24389Otrs AgOtrs6.3MEDIUMImproper Privilege Management in OTRS Affects Multiple Versions
CVE-2024-43446Otrs AgOtrs3.5LOWContent-Type Sniffing Vulnerability in OTRS by OTRS AG
CVE-2024-43445Otrs AgOtrs5.4MEDIUMPlain Text Passwords Displayed in OTRS Admin Log Module
CVE-2024-43444Otrs AgOtrs8.2HIGHCross-Site Scripting (XSS) Vulnerability Affects OTRS and Community Edition
CVE-2024-43443Otrs AgOtrs4.9MEDIUMImproper Neutralization of Input Leads to Cross-Site Scripting Vulnerability in OTRS
CVE-2024-43442Otrs AgOtrs4.9MEDIUMIncorrect Privilege Assignment in Inline Editing Can Lead to Privilege Escalation
CVE-2024-23794Otrs AgOtrs7.5HIGHUpload of files outside application directory
CVE-2024-23793Otrs AgOtrs6.3MEDIUMMissing file type check in avatar picture upload
CVE-2024-23790Otrs AgOtrs3.5LOWUnnecessary data is written to log if issues during indexing occurs
CVE-2024-23791Otrs AgOtrs4.9MEDIUMInsufficient access control
CVE-2024-23792OTRS AGOTRS6.5MEDIUMPassword is send back to client
CVE-2023-6254Otrs AgOtrs8.1HIGH