Dear reader,
The following security fixes were made:
OTRS Security Advisory 2024-05
ID: OSA-2024-05Date: 2024-06-03Title: Possible remote code execution in uploaded filenamesSeverity (CVSS v3.1): 6.3 MEDIUMSeverity (CVSS v4.0): 6.8 MEDIUMUrgency: ModerateProducts: OTRS, ((OTRS)) Community EditionFixed in: OTRS 7.0.50, OTRS 2024.4.3CVSS VECTORs: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L / CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/U:AmberReferences: CVE-2024-23793
To read the entire Security Advisory/Advisories, please follow this link:
https://otrs.com/otrs-software-solutions/otrs/overview-release-notes-security-advisories/security-advisories/
Kind regards,
Your OTRS release team
Read about OTRS service management solutions, product features, and interesting tips from our experts every month. Simply select your desired language.
German
Spanish
English
Portuguese
Visit www.otrs.com or contact us.
Legal notice
Privacy Statement
