CVE-2008-7282

EPSS 0.20%

Published: 3/18/2011Modified: 4/28/2026

Also known as:DEBIAN-CVE-2008-7282

Description

Kernel/Output/HTML/CustomerNewTicketQueueSelectionGeneric.pm in Open Ticket Request System (OTRS) before 2.2.6, when the CustomerPanelOwnSelection and CustomerGroupSupport options are enabled, allows remote authenticated users to bypass intended access restrictions, and perform certain (1) list and (2) write operations on queues, via unspecified vectors.

Affected packages (1)

Debian/otrs2from 0, < 2.2.6-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-7282