CVE-2020-1772

moderate-risk

Published 2020-03-27

It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue affects: ((OTRS)) Community Edition 5.0.41 and prior versions, 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

Do I need to act?

0.45% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

NETWORK / HIGH complexity

Affected Products (8)

Otrs

Backports Sle

Leap

Debian Linux

Affected Vendors

Debian Otrs Opensuse

References (12)

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00038.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00066.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00077.html

Mailing List https://lists.debian.org/debian-lts-announce/2020/05/msg00000.html

https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html

Patch https://otrs.com/release-notes/otrs-security-advisory-2020-09/

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00038.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00066.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00077.html

Mailing List https://lists.debian.org/debian-lts-announce/2020/05/msg00000.html

https://lists.debian.org/debian-lts-announce/2023/08/msg00040.html

Patch https://otrs.com/release-notes/otrs-security-advisory-2020-09/

/ 100

moderate-risk

Severity 20/34 · Moderate

Exploitability 2/34 · Minimal

Exposure 14/34 · Moderate