CVE-2013-2625

Sažetak

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified

Reference

http://archives.neohapsis.com/archives/bugtraq/2013-08/0009.html
http://lists.opensuse.org/opensuse-updates/2013-08/msg00027.html
https://security-tracker.debian.org/tracker/CVE-2013-2625
https://exchange.xforce.ibmcloud.com/vulnerabilities/83287
http://www.securityfocus.com/bid/58936

CVSS

Base:	6.4
Impact:	4.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

18-08-2020 - 15:05

Objavljeno

27-11-2019 - 19:15