CVE-2008-7283
Publication date 18 March 2011
Last updated 24 July 2024
Ubuntu priority
Open Ticket Request System (OTRS) before 2.2.6, when customer group support is enabled, allows remote authenticated users to bypass intended access restrictions and perform web-interface updates to tickets by leveraging queue read permissions.