When dynamic templates are used (OTRSTicketForms), admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior versions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: OTRS
Published: 2021-02-08T10:55:18.477404Z
Updated: 2024-09-16T17:15:28.699Z
Reserved: 2019-11-29T00:00:00
Link: CVE-2020-1779
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-02-08T11:15:13.427
Modified: 2021-10-19T12:19:13.253
Link: CVE-2020-1779
Redhat
No data.