CVE Vulnerabilities

CVE-2021-21438

Published: Mar 22, 2021 | Modified: Nov 21, 2024
CVSS 3.x
4.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Agents are able to see linked FAQ articles without permissions (defined in FAQ Category). This issue affects: FAQ version 6.0.29 and prior versions, OTRS version 7.0.24 and prior versions.

Affected Software

Name Vendor Start Version End Version
Faq Otrs 6.0.0 (including) 6.0.29 (excluding)
Otrs Otrs 7.0.0 (including) 7.0.24 (excluding)

References