Otrs

151 tracked vulnerabilities.

CVE-2025-24387 MEDIUM
Otrs < 2025.1.2 - CSRF
Mar 10, 2025
CVSS 4.8
EPSS 0.00
CVE-2024-6540 MEDIUM
OTRS <2024.4.x - Info Disclosure
Jul 15, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-23794 MEDIUM
Otrs < 2024.5.2 - Incorrect Privilege Assignment
Jul 15, 2024
CVSS 5.2
EPSS 0.00
CVE-2024-23792 MEDIUM
Otrs < 7.0.49 - Authentication Bypass
Jan 29, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-23791 MEDIUM
Otrs < 7.0.49 - Log Information Exposure
Jan 29, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-23790 LOW
OTRS <7.0.48-8.0.37-2023.1.1 - Info Disclosure
Jan 29, 2024
CVSS 3.5
EPSS 0.00
CVE-2023-6254 HIGH
OTRS <8.0.37 - Info Disclosure
Nov 27, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-5422 HIGH
Otrs < 6.0.34 - Improper Certificate Validation
Oct 16, 2023
CVSS 8.7
EPSS 0.00
CVE-2023-5421 LOW
Otrs < 6.0.34 - XSS
Oct 16, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-38059 MEDIUM
Otrs < 6.0.34 - Information Disclosure
Oct 16, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-38060 MEDIUM
Otrs < 6.0.34 - Injection
Jul 24, 2023
CVSS 6.3
EPSS 0.00
CVE-2023-38058 MEDIUM
Otrs < 8.0.35 - Incorrect Authorization
Jul 24, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-38057 MEDIUM
Otrs Survey < 6.0.22 - XSS
Jul 24, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-38056 HIGH
Otrs < 6.0.34 - OS Command Injection
Jul 24, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-2534 HIGH
Otrs < 8.0.32 - Incorrect Authorization
May 08, 2023
CVSS 7.6
EPSS 0.00
CVE-2018-17883 MEDIUM
OTRS 6.0.x <6.0.12 - XSS
Apr 16, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-1250 HIGH
Otrs < 6.0.34 - Code Injection
Mar 20, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-1248 MEDIUM
Otrs < 6.0.34 - XSS
Mar 20, 2023
CVSS 6.1
EPSS 0.00
CVE-2022-4427 MEDIUM
Otrs < 6.0.34 - SQL Injection
Dec 19, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-3501 LOW
Article Template < unknown - Info Disclosure
Oct 17, 2022
CVSS 3.5
EPSS 0.00
CVE-2022-39052 HIGH
Unknown - DoS
Oct 17, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-39051 MEDIUM
Template Toolkit - Code Injection
Sep 05, 2022
CVSS 6.8
EPSS 0.00
CVE-2022-39050 MEDIUM
OTRS - XSS
Sep 05, 2022
CVSS 4.6
EPSS 0.01
CVE-2022-39049 LOW
OTRS - XSS
Sep 05, 2022
CVSS 3.5
EPSS 0.01
CVE-2022-32741 MEDIUM
Otrs < 7.0.35 - Information Disclosure
Jun 13, 2022
CVSS 5.3
EPSS 0.00
Products
otrs 134 otrs_itsm 8 open_ticket_request_system 6 faq 4 otrs_help_desk 2 survey 2 otrs_storm 1 ticket_forms 1 calendar_resource_planning 1 time_accounting 1 cis_in_customer_frontend 1 custom_contact_fields 1 iphonehandle 1 itsmconfigurationmanagement 1 otrscisincustomerfrontend 1
Quick Filters
Critical CVEs With Exploits In CISA KEV