VDB
CVE-2021-21440
CVE-2021-21440
PUBLISHED
Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.27 and prior versions; 8.0.x version 8.0.14 and prior versions.
EPSS 0.18% · 39.2th percentile
Risk Scores
EPSS Score
0.18%
39.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | otrs2 | 5.0.24-1, 6.0.1-1, 6.0.2-1 |
| Ubuntu:16.04:LTS | otrs2 | 5.0.1-1, 5.0.7-1, 0 |
| Ubuntu:22.04:LTS | otrs2 | 0, 6.0.32-6, 6.1.2-1 |
| Ubuntu:20.04:LTS | otrs2 | 6.0.25-2, 0, 6.0.25-3 |
Timeline
- Jul 26, 2021 EPSS Score
- Jul 26, 2021 CVE Published
- Sep 23, 2021 EPSS Score
- Nov 21, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 20, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 18, 2022 EPSS Score
- Jul 17, 2022 EPSS Score
- Sep 14, 2022 EPSS Score
- Nov 12, 2022 EPSS Score
References
- https://ubuntu.com/security/CVE-2021-21440 third-party-advisory
- https://otrs.com/release-notes/otrs-security-advisory-2021-10/ third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2021-21440 third-party-advisory