CVE-2018-14593 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-14593 Interim 1 21 2025-02-17T02:41:55Z current 2021-05-30T14:15:32Z 2025-02-17T02:41:55Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-14593 An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their privileges by accessing a specially crafted URL. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/R7XSJAWLVU3AMFY65PIQAROQ5RALON3Q/#R7XSJAWLVU3AMFY65PIQAROQ5RALON3Q E-Mail link for openSUSE-SU-2018:3005-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 15 openSUSE Leap 15.0 otrs-4.0.32-bp150.3.3.1 otrs-4.0.32-lp150.2.3.1 otrs-doc-4.0.32-bp150.3.3.1 otrs-doc-4.0.32-lp150.2.3.1 otrs-itsm-4.0.32-bp150.3.3.1 otrs-itsm-4.0.32-lp150.2.3.1 otrs-4.0.32-bp150.3.3.1 as a component of SUSE Package Hub 15 otrs-doc-4.0.32-bp150.3.3.1 as a component of SUSE Package Hub 15 otrs-itsm-4.0.32-bp150.3.3.1 as a component of SUSE Package Hub 15 otrs-4.0.32-lp150.2.3.1 as a component of openSUSE Leap 15.0 otrs-doc-4.0.32-lp150.2.3.1 as a component of openSUSE Leap 15.0 otrs-itsm-4.0.32-lp150.2.3.1 as a component of openSUSE Leap 15.0 An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their privileges by accessing a specially crafted URL. CVE-2018-14593 SUSE Package Hub 15:otrs-4.0.32-bp150.3.3.1 SUSE Package Hub 15:otrs-doc-4.0.32-bp150.3.3.1 SUSE Package Hub 15:otrs-itsm-4.0.32-bp150.3.3.1 openSUSE Leap 15.0:otrs-4.0.32-lp150.2.3.1 openSUSE Leap 15.0:otrs-doc-4.0.32-lp150.2.3.1 openSUSE Leap 15.0:otrs-itsm-4.0.32-lp150.2.3.1 moderate 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P 8.8 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H