CVE-2018-20800
6.5
MEDIUM
CVSS 3.1
EPSS 0.23%
Description
An issue was discovered in Open Ticket Request System (OTRS) 5.0.31 and 6.0.13. Users updating to 6.0.13 (also patchlevel updates) or 5.0.31 (only major updates) will experience data loss in their agent preferences table.
How to fix CVE-2018-20800
To remediate CVE-2018-20800, upgrade the affected package to a fixed version below.
- Debian/otrs2—upgrade to 6.0.14-1 or later
Is CVE-2018-20800 being exploited?
Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 6.0.14-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |