cvedb.io
CVE-2018-14593
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2018-08-04T01:29:03.997 · Last modified 2026-06-17T01:41:14.877

Summary

An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their privileges by accessing a specially crafted URL.

Affected products

otrs — open_ticket_request_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when otrs ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.