CVE-2020-1772
MEDIUMOTRS 5.0.0-5.0.41 and 7.0.0-7.0.15 - Wildcard Injection in Lost Password Token
Title source: llmDescription
It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.
References (6)
Core 6
Core References
Mailing List, Third Party Advisory vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00038.html
Mailing List, Third Party Advisory mailing-list
https://lists.debian.org/debian-lts-announce/2020/05/msg00000.html
Mailing List, Third Party Advisory vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00066.html
Mailing List, Third Party Advisory vendor-advisory
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00077.html
Mailing List mailing-list
https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
Patch, Vendor Advisory
https://otrs.com/release-notes/otrs-security-advisory-2020-09/
Scores
CVSS v3
6.5
EPSS
0.0045
EPSS Percentile
63.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
Details
CWE
CWE-155
Status
published
Products (6)
debian/debian_linux
8.0
opensuse/backports_sle
15.0 (3 CPE variants)
opensuse/leap
15.1
opensuse/leap
15.2
otrs/otrs
5.0.0 - 5.0.41
otrs/otrs
7.0.0 - 7.0.15
Published
Mar 27, 2020
Tracked Since
Feb 18, 2026