CVE-2008-7283

Published: 18 March 2011

Open Ticket Request System (OTRS) before 2.2.6, when customer group support is enabled, allows remote authenticated users to bypass intended access restrictions and perform web-interface updates to tickets by leveraging queue read permissions.

Priority

Medium

Status

Package Release Status
otrs2
Launchpad, Ubuntu, Debian
Upstream
Released (2.2.6)