VDB

DEBIAN-CVE-2019-10067

DEBIAN-CVE-2019-10067 PUBLISHED CVSS 5.400000095367432 MEDIUM

An issue was discovered in Open Ticket Request System (OTRS) 7.x through 7.0.6 and Community Edition 5.0.x through 5.0.35 and 6.0.x through 6.0.17. An attacker who is logged into OTRS as an agent user with appropriate permissions may manipulate the URL to cause execution of JavaScript in the context of OTRS.

Risk Scores

CVSS v3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Affected Products

VendorProductVersions
Debian:11otrs22.4.10+dfsg1, 2.4.5-1, 2.4.5-2

Timeline

  • May 22, 2019 CVE Published
  • Apr 28, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›