Vulnerabilities > CVE-2020-1767
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
LOW Availability impact
NONE Summary
Agent A is able to save a draft (i.e. for customer reply). Then Agent B can open the draft, change the text completely and send it in the name of Agent A. For the customer it will not be visible that the message was sent by another agent. This issue affects: ((OTRS)) Community Edition 6.0.x version 6.0.24 and prior versions. OTRS 7.0.x version 7.0.13 and prior versions.
Vulnerable Configurations
Nessus
NASL family | Debian Local Security Checks |
NASL id | DEBIAN_DLA-2079.NASL |
description | Several vulnerabilities have been discovered in the otrs2 package that may lead to unauthorized access, remote code execution and spoofing. CVE-2020-1765 An improper control of parameters allows the spoofing of the from fields of the following screens: AgentTicketCompose, AgentTicketForward, AgentTicketBounce. CVE-2020-1766 Due to improper handling of uploaded images it is possible in very unlikely and rare conditions to force the agents browser to execute malicious JavaScript from a special crafted SVG file rendered as inline jpg file. CVE-2020-1767 Unauthorized view of drafts, change the text completely and send it in the name of draft owner. For the customer it will not be visible that the message was sent by another agent. For Debian 8 |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 133318 |
published | 2020-01-30 |
reporter | This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/133318 |
title | Debian DLA-2079-1 : otrs2 security update |
code |
|
References
- https://lists.debian.org/debian-lts-announce/2020/01/msg00027.html
- https://lists.debian.org/debian-lts-announce/2020/01/msg00027.html
- https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
- https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html
- https://otrs.com/release-notes/otrs-security-advisory-2020-03/
- https://otrs.com/release-notes/otrs-security-advisory-2020-03/