DEBIAN-CVE-2018-11563

DEBIAN-CVE-2018-11563 PUBLISHED CVSS 4.599999904632568 MEDIUM

An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.7. A carefully constructed email could be used to inject and execute arbitrary stylesheet or JavaScript code in a logged in customer's browser in the context of the OTRS customer panel application.

Risk Scores

CVSS 3.1

4.599999904632568

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Affected Products

Vendor	Product	Versions
Debian:11	otrs2	0, 2.0.4, 2.0.4

Timeline

Jul 8, 2019 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2018-11563 advisory

Open in Interactive Console →