Vulnerabilities > Otrs > Otrs > 8.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-11-23 | CVE-2020-1778 | Improper Authentication vulnerability in Otrs When OTRS uses multiple backends for user authentication (with LDAP), agents are able to login even if the account is set to invalid. | 4.0 |
2020-10-15 | CVE-2020-1777 | Information Exposure vulnerability in Otrs Agent names that participates in a chat conversation are revealed in certain parts of the external interface as well as in chat transcriptions inside the tickets, when system is configured to mask real agent names. | 5.0 |
2020-06-08 | CVE-2020-1775 | Information Exposure vulnerability in Otrs BCC recipients in mails sent from OTRS are visible in article detail on external interface. | 4.3 |