CVE-2023-1248

CVSS V2 None CVSS V3 None
Description
Improper Input Validation vulnerability in OTRS AG OTRS (Ticket Actions modules), OTRS AG ((OTRS)) Community Edition (Ticket Actions modules) allows Cross-Site Scripting (XSS).This issue affects OTRS: from 7.0.X before 7.0.42; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.
Overview
  • CVE ID
  • CVE-2023-1248
  • Assigner
  • security@otrs.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-03-20T09:15:11
  • Last Modified Date
  • 2023-03-24T18:57:58
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:otrs:otrs:*:*:*:*:community:*:*:* 1 OR 6.0.1 6.0.34
cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:* 1 OR 7.0.0 7.0.42
References
Reference URL Reference Tags
https://otrs.com/release-notes/otrs-security-advisory-2023-01/ Vendor Advisory
History
Created Old Value New Value Data Type Notes
2023-04-17 02:57:54 Added to TrackCVE
2023-04-17 02:57:58 Weakness Enumeration new