oss-sec mailing list archives

Re: [Ticket#2014012942020471] CVE Request: otrs: CSRF issue in customer web interface

From: Jens Bothe via OTRS Security Team <security () otrs org>
Date: Wed, 29 Jan 2014 10:14:48 +0000

Hi,
2014-01-29 10:58 (+1) - Salvatore Bonaccorso wrote: A CSRF issue in otrs was
announced in [1]. Is a CVE for this issue
already assigned?
 
 
For the OSA-2014-01 we don't have a CVE, just the OTRS Bug report.

Regards,

Jens Bothe

-- 
OTRS AG
Norsk-Data-Straße 1
61352 Bad Homburg
T: +49 (0) 6172 681988 0
F: +49 (0) 9421 56818 18
E: [1]sales () otrs com
I: [2]http://www.otrs.com/ 

Business location: Bad Homburg, Country Court: Bad Homburg, HRB 10751, VAT ID:
DE256610065
Chairman: Burchard Steinbild, Managing Board: André Mindermann (CEO),
Christopher Kuhn, Sabine Riedel

Easier Planning and Improved Overviews - Enhance your Service Management with
OTRS 3.3 - [3]Download and Test the Stable Release Now!



[1] mailto:sales () otrs com
[2] http://www.otrs.com/
[3] https://www.otrs.com/new-in-otrs-3-3/

Attachment: pgp_sign.asc
Description:

Current thread:

CVE Request: otrs: CSRF issue in customer web interface Salvatore Bonaccorso (Jan 29)
- Re: [Ticket#2014012942020471] CVE Request: otrs: CSRF issue in customer web interface Jens Bothe via OTRS Security Team (Jan 29)
- Re: CVE Request: otrs: CSRF issue in customer web interface cve-assign (Jan 29)