[https://pg183.files.keap.app/pg183/d45d7bd8-d69a-4057-b710-7f1e3cf0f641] Security Advisories Dear reader, The following security fixes were made: OTRS Security Advisory 2024-06 ID: OSA-2024-06 Date: 2024-07-15 Title: Agents are able to lock the ticket without the “Owner” permission Severity CVSS v3.1: 5.2 MEDIUM Severity CVSS v4.0: 5.6 MEDIUM Urgency: Reduced Product: OTRS Fixed in: OTRS 2024.5.2 CVSS VECTOR: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N * CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/U:Green References: CVE-2024-23794 OTRS Security Advisory 2024-07 ID: OSA-2024-07 Date: 2024-07-15 Title: Information disclosure in external interface Severity CVSS v3.1: 5.7 MEDIUM Severity CVSS v4.0: 1.9 LOW Urgency: Moderate Product: OTRS Fixed in: OTRS 2024.5.2 CVSS VECTOR: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N * CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber References: CVE-2024-6540 OTRS Security Advisory 2024-08 ID: OSA-2024-08 Date: 2024-07-15 Title: OpenSSH: Remote Code Execution Severity CVSS v3.1: 8.1. HIGH Urgency: High Product: OTRS SaaS platform Fixed in: SaaS stack 2024-07 CVSS VECTOR: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H References: CVE-2024-6387 OTRS Security Advisory 2024-09 ID: OSA-2024-09 Date: 2024-07-15 Title: IKEv1 default AH/ESP responder can crash and restart Severity CVSS v3.1: 6.5 MEDIUM Urgency: Moderate Product: OTRS SaaS platform Fixed in: SaaS stack 2024-07 CVSS VECTOR: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H References: CVE-2024-3652 To read the entire Security Advisories, please follow this link: https://otrs.com/otrs-software-solutions/otrs/overview-release-notes-securit...https://pg183.keap-link004.com/v2/click/6812252de70bbcc3d67616965e6f2825/eJy... Kind regards, Your OTRS release team [https://pg183.files.keap.app/pg183/9d0d1057-3e98-41d2-a8a7-c347d19963ce]https://pg183.keap-link004.com/v2/click/e83fd954f9bf592cf8e240779d4ebd4c/eJy... Subscribe to the OTRS Newsletter. Read about OTRS service management solutions, product features, and interesting tips from our experts every month. Simply select your desired language. Germanhttps://pg183.keap-link004.com/v2/click/d49a54425243a44efccd0a33c8057654/eJy... Spanishhttps://pg183.keap-link004.com/v2/click/e1045ca5c8e8a06d63c0a5391bbf1ffa/eJy... Englishhttps://pg183.keap-link004.com/v2/click/4d7f7246aeb03207016cbd313b01fd54/eJy... Portuguesehttps://pg183.keap-link004.com/v2/click/0e826f6cf6392fc1922624cf6a54d725/eJy... [Facebook]https://pg183.keap-link004.com/v2/click/00c22e0ca4d00432eeb15a90da459f13/eJy... [Twitter]https://pg183.keap-link004.com/v2/click/433995a13b9c6c7cb6b36e57a8a7f3c5/eJy... [LinkedIn]https://pg183.keap-link004.com/v2/click/b22d92382af0d430fd1e0a6dbb69ff28/eJy... [YouTube]https://pg183.keap-link004.com/v2/click/57c6da564298f86949656045c70055a4/eJy... [Instagram]https://pg183.keap-link004.com/v2/click/d0ce14977d91e1f390945173a7a4da2b/eJy... Visit www.otrs.comhttps://pg183.keap-link004.com/v2/click/7f2d5659b7cc1661cdb126d04c7542bb/eJy... or contact us.https://pg183.keap-link004.com/v2/click/886c77cca9ee1c00523d053d154f00b1/eJy... Legal noticehttps://pg183.keap-link004.com/v2/click/ffb23f136f3740e73208c6c0fa9028be/eJy... Privacy Statementhttps://pg183.keap-link004.com/v2/click/090fa9d578c111bab79404d9aa450dd0/eJy... announce mailing list -- announce@lists.otrs.org To unsubscribe send an email to announce-leave@lists.otrs.orgmailto:announce-leave@lists.otrs.org To manage your subscription or browse the message archive visit: https://lists.otrs.org/postorius/lists/announce.lists.otrs.org/https://pg183.keap-link004.com/v2/click/d1b3fead68820f2bc6a2a75898c5bb02/eJy...