Vulnerability Details : CVE-2018-16587
In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a user with admin permissions opens it, it causes deletions of arbitrary files that the OTRS web server user has write access to.
Vulnerability category: Input validation
Exploit prediction scoring system (EPSS) score for CVE-2018-16587
Probability of exploitation activity in the next 30 days: 0.51%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 76 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2018-16587
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.8
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:P |
8.6
|
4.9
|
NIST |
6.5
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2018-16587
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-16587
-
https://github.com/OTRS/otrs/commit/a4a1a01f84fac7ab032570ee50b660e2ebb15c01
Improved AdminSupportDataCollector. · OTRS/otrs@a4a1a01 · GitHubPatch
-
https://github.com/OTRS/otrs/commit/d8cae00b0f78c2a07bb10cedb817304139395843
Improved AdminSupportDataCollector. · OTRS/otrs@d8cae00 · GitHubPatch
-
https://community.otrs.com/security-advisory-2018-04-security-update-for-otrs-framework/
Security Advisory 2018-04: Security Update for OTRS Framework - | community.otrs.comPatch;Vendor Advisory
-
https://www.debian.org/security/2018/dsa-4317
Debian -- Security Information -- DSA-4317-1 otrs2Third Party Advisory
-
https://github.com/OTRS/otrs/commit/d9db0c6a15caafda7689320ecf61777993c33711
Improved AdminSupportDataCollector. · OTRS/otrs@d9db0c6 · GitHubPatch
-
https://lists.debian.org/debian-lts-announce/2018/09/msg00033.html
[SECURITY] [DLA 1521-1] otrs2 security updateMailing List;Third Party Advisory
Products affected by CVE-2018-16587
- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:otrs:open_ticket_request_system:*:*:*:*:*:*:*:*
- cpe:2.3:a:otrs:open_ticket_request_system:*:*:*:*:*:*:*:*
- cpe:2.3:a:otrs:open_ticket_request_system:*:*:*:*:*:*:*:*