Description

The file upload feature in OTRS and ((OTRS)) Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl scripts. This issue affects OTRS: from 7.0.X through 7.0.49, 8.0.X, 2023.X, from 2024.X through 2024.3.2; ((OTRS)) Community Edition: from 6.0.1 through 6.0.34.

INFO

Published Date :

2024-06-06T18:06:58.805Z

Last Modified :

2024-08-01T23:13:07.327Z

Source :

OTRS
AFFECTED PRODUCTS

The following products are affected by CVE-2024-23793 vulnerability.

Vendors Products
Otrs
  • Otrs
  • Otrs Community Edition
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-23793.

URL Resource
https://otrs.com/release-notes/otrs-security-advisory-2024-05/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact