Description
An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 11 | | =2.0.4p01-10 || =2.0.4p01-11 || =2.0.4p01-12 || =2.0.4p01-13 || =2.0.4p01-14 || =2.0.4p01-14.1 || =2.0.4p01-15 || =2.0.4p01-16 || =2.0.4p01-17 || =2.0.4p01-18 || =2.0.4p01-6 || =2.0.4p01-7 || =2.0.4p01-8 || =2.0.4p01-9 || =2.0.99beta1-1 || =2.0.99beta1-2 || =2.1.1-1 || =2.1.3-1 || =2.1.4-1 || =2.1.4-2 || =2.1.5-1 || =2.1.5-2 || =2.1.5-3 || =2.1.6-1 || =2.1.7-1 || =2.1.7-2 || =2.2.0~beta2-1 || =2.2.0~beta3-1 || =2.2.1-1 || =2.2.2-1 || =2.2.3-1 || =2.2.4-1 || =2.2.5-1 || =2.2.5-2 || =2.2.6-1 || =2.2.7-1 || =2.2.7-2 || =2.2.7-2lenny1 || =2.2.7-2lenny2 || =2.2.7-2lenny3 || =2.2.7-3 || =2.3.2-1 || =2.3.2-2 || =2.3.3-1 || =2.3.4-1 || =2.3.4-2 || =2.3.4-3 || =2.3.4-4 || =2.3.4-5 || =2.3.4-6 || =2.3.4-7 || =2.4.10+dfsg1-1 || =2.4.10+dfsg1-2 || =2.4.10+dfsg1-3 || =2.4.5-1 || =2.4.5-2 || =2.4.5-3 || =2.4.5-4 || =2.4.5-5 || =2.4.6-1 || =2.4.6-2 || =2.4.7+dfsg1-1 || =2.4.7-1 || =2.4.7-2 || =2.4.7-3 || =2.4.7-4 || =2.4.7-5 || =2.4.7-6 || =2.4.8+dfsg1-1 || =2.4.9+dfsg1-1 || =2.4.9+dfsg1-2 || =2.4.9+dfsg1-3 || =2.4.9+dfsg1-3+squeeze1 || =2.4.9+dfsg1-3+squeeze3 || =2.4.9+dfsg1-3+squeeze4 || =2.4.9+dfsg1-3+squeeze5 || =2.4.9+dfsg1-4 || =2.4.9+dfsg1-5 || =3.0.10+dfsg1-1 || =3.0.10+dfsg1-2 || =3.0.11+dfsg1-1 || =3.0.8+dfsg1-1 || =3.0.9+dfsg1-1 || =3.1.0~beta4+dfsg1-1 || =3.1.0~beta5+dfsg1-1 || =3.1.0~rc1+dfsg1-1 || =3.1.1+dfsg1-1 || =3.1.1+dfsg1-2 || =3.1.2+dfsg1-1 || =3.1.2+dfsg1-2 || =3.1.2+dfsg1-3 || =3.1.3+dfsg1-1 || =3.1.3+dfsg1-2 || =3.1.4+dfsg1-1 || =3.1.5+dfsg1-1 || =3.1.5+dfsg1-2 || =3.1.5+dfsg1-3 || =3.1.6+dfsg1-1 || =3.1.7+dfsg1-1 || =3.1.7+dfsg1-2 || =3.1.7+dfsg1-3 || =3.1.7+dfsg1-4 || =3.1.7+dfsg1-5 || =3.1.7+dfsg1-6 || =3.1.7+dfsg1-7 || >=0 <3.1.7+dfsg1-8 | 3.1.7+dfsg1-8 |
