← volver
CVE-2022-32739

OTRS version number is always in the exported ICS files

CVSS 3.5 LOWEPSS 0.7%CWE-200
When Secure::DisableBanner system configuration has been disabled and agent shares his calendar via public URL, received ICS file contains OTRS release number.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
Productos afectados
OTRS AG · OTRSOTRS AG · OTRSCalendarResourcePlanning

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://otrs.com/release-notes/otrs-security-advisory-2022-07/