Oval Definition:
oval:com.ubuntu.cosmic:def:20169139000
Revision Date
:
2017-02-16
Version
:
1
Title
:
CVE-2016-9139 on Ubuntu 18.10 (cosmic) - low.
Description
:
Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2016-9139
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
NOT
While related to the CVE in some way, the 'otrs2' package in cosmic is not affected (note: '5.0.14-1').
BACK