VDB
DEBIAN-CVE-2014-2553
DEBIAN-CVE-2014-2553
PUBLISHED
CVSS 8.5 HIGH
Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.1.x before 3.1.21, 3.2.x before 3.2.16, and 3.3.x before 3.3.6 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to dynamic fields.
Risk Scores
CVSS 4.0
8.5
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | otrs2 | 0, 2.0.4, 2.0.4 |
Timeline
- Apr 2, 2014 CVE Published
- Apr 28, 2026 CVE Updated