Unrated severityNVD Advisory· Published Sep 6, 2021· Updated Sep 16, 2024
User enumeration issue using "lost password" feature
CVE-2021-36095
Description
Malicious attacker is able to find out valid user logins by using the "lost password" feature. This issue affects: OTRS AG ((OTRS)) Community Edition version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.28 and prior versions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: >=6.0.1
- OTRS AG/((OTRS)) Community Editionv5Range: 6.0.1
Patches
Vulnerability mechanics
References
1- otrs.com/release-notes/otrs-security-advisory-2021-18/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.