Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package
References
Link | Resource |
---|---|
https://otrs.com/release-notes/otrs-security-advisory-2022-12/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: OTRS
Published: 2022-09-05T00:00:00
Updated: 2022-09-05T06:40:12
Reserved: 2022-08-31T00:00:00
Link: CVE-2022-39051
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-05T07:15:08.117
Modified: 2022-10-01T02:16:25.243
Link: CVE-2022-39051
JSON object: View
Redhat Information
No data.
CWE