Published on August 23rd, 2019 📆 | 6484 Views ⚑0
Open Ticket Request System up to 5.0.35/6.0.18/7.0.7 Notification Tag Template Hash information disclosure
|CVSS Meta Temp Score||Current Exploit Price (≈)|
A vulnerability classified as problematic was found in Open Ticket Request System up to 5.0.35/6.0.18/7.0.7 (Ticket Tracking Software). This vulnerability affects an unknown code of the component Notification Tag Template Handler. The manipulation with an unknown input leads to a information disclosure vulnerability (Hash). The CWE definition for the vulnerability is CWE-200. As an impact it is known to affect confidentiality.
The weakness was released 08/21/2019. The advisory is shared for download at community.otrs.com. This vulnerability was named CVE-2019-13458 since 07/09/2019. There are neither technical details nor an exploit publicly available.
Upgrading to version 5.0.36, 6.0.19 or 7.0.8 eliminates this vulnerability.
Entry connected to this vulnerability is available at 140535.
VulDB Meta Base Score: 3.5
VulDB Meta Temp Score: 3.4
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔒
0-Day Time: 🔒
Upgrade: Open Ticket Request System 5.0.36/6.0.19/7.0.8
Created: 08/22/2019 09:24 AM See the underground prices here!
See the underground prices here!