Oval Definition:oval:org.opensuse.security:def:201814593
Revision Date:2021-11-03Version:1
Title:CVE-2018-14593
Description:

An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their privileges by accessing a specially crafted URL.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-14593
Mitre CVE-2018-14593
SUSE CVE-2018-14593
openSUSE-SU-2018:3005-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Package Hub for SUSE Linux Enterprise 15
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • otrs-4.0.32-lp150.2.3 is installed
  • AND otrs is signed with openSUSE key
  • OR
  • otrs-doc-4.0.32-lp150.2.3 is installed
  • AND otrs-doc is signed with openSUSE key
  • OR
  • otrs-itsm-4.0.32-lp150.2.3 is installed
  • AND otrs-itsm is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND Package Information
  • otrs-4.0.32-bp150.3.3 is installed
  • OR otrs-doc-4.0.32-bp150.3.3 is installed
  • OR otrs-itsm-4.0.32-bp150.3.3 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND Package Information
  • otrs-4.0.32-bp150.3.3.1 is installed
  • OR otrs-doc-4.0.32-bp150.3.3.1 is installed
  • OR otrs-itsm-4.0.32-bp150.3.3.1 is installed
    • BACK