VulnerableCode Package Details - pkg:deb/debian/otrs2@6.0.24-1?distro=bullseye

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-59ez-3fcw-9ke1	An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.12, and Community Edition 5.0.x through 5.0.38 and 6.0.x through 6.0.23. An attacker who is logged into OTRS as an agent is able to list tickets assigned to other agents, even tickets in a queue where the attacker doesn't have permissions.	CVE-2019-18179
VCID-h4xp-dgt9-jfhb	Improper Check for filenames with overly long extensions in PostMaster (sending in email) or uploading files (e.g. attaching files to mails) of ((OTRS)) Community Edition and OTRS allows an remote attacker to cause an endless loop. This issue affects: OTRS AG: ((OTRS)) Community Edition 5.0.x version 5.0.38 and prior versions; 6.0.x version 6.0.23 and prior versions. OTRS AG: OTRS 7.0.x version 7.0.12 and prior versions.	CVE-2019-18180

Vulnerability

Summary

Aliases

VCID-59ez-3fcw-9ke1

An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.12, and Community Edition 5.0.x through 5.0.38 and 6.0.x through 6.0.23. An attacker who is logged into OTRS as an agent is able to list tickets assigned to other agents, even tickets in a queue where the attacker doesn't have permissions.

CVE-2019-18179

VCID-h4xp-dgt9-jfhb

Improper Check for filenames with overly long extensions in PostMaster (sending in email) or uploading files (e.g. attaching files to mails) of ((OTRS)) Community Edition and OTRS allows an remote attacker to cause an endless loop. This issue affects: OTRS AG: ((OTRS)) Community Edition 5.0.x version 5.0.38 and prior versions; 6.0.x version 6.0.23 and prior versions. OTRS AG: OTRS 7.0.x version 7.0.12 and prior versions.

CVE-2019-18180

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T09:51:37.060009+00:00	Debian Importer	Fixing	VCID-59ez-3fcw-9ke1	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:53:42.869548+00:00	Debian Importer	Fixing	VCID-h4xp-dgt9-jfhb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T06:35:33.122419+00:00	Debian Importer	Fixing	VCID-59ez-3fcw-9ke1	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:58:08.582111+00:00	Debian Importer	Fixing	VCID-h4xp-dgt9-jfhb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:49:15.602852+00:00	Debian Importer	Fixing	VCID-h4xp-dgt9-jfhb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:49:15.578668+00:00	Debian Importer	Fixing	VCID-59ez-3fcw-9ke1	https://security-tracker.debian.org/tracker/data/json	38.1.0