Please be aware of a critical security patch for ((OTRS Community Edition)) in versions 4, 5 and 6 released today.
A local attacker (agent) can gain any other users permission via URL manipulation.
Please be also aware that versions prior to OTRS 4 are affected but will not be patched!
CVE-2018-14593
Forum rules
Dont create your support topics here!
Dont create your support topics here!
CVE-2018-14593
"Production": OTRS™ 8, OTRS™ 7, STORM powered by OTRS
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com
"Testing": ((OTRS Community Edition)) and git Master
Never change Defaults.pm! :: Blog
Professional Services:: http://www.otrs.com :: enjoy@otrs.com