High severity8.8NVD Advisory· Published Aug 4, 2018· Updated Jun 17, 2026
CVE-2018-14593
CVE-2018-14593
Description
An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their privileges by accessing a specially crafted URL.
Affected products
1Patches
Vulnerability mechanics
References
3- community.otrs.com/security-advisory-2018-03-security-update-for-otrs-framework/nvdVendor Advisory
- lists.debian.org/debian-lts-announce/2018/08/msg00021.htmlnvdMailing ListThird Party Advisory
- www.debian.org/security/2018/dsa-4317nvdThird Party Advisory
News mentions
0No linked articles in our index yet.