CVE-2021-21438

Agents are able to see linked FAQ articles without permissions (defined in FAQ Category). This issue affects: FAQ version 6.0.29 and prior versions, OTRS version 7.0.24 and prior versions.
References
Configurations

Configuration 1

cpe:2.3:a:otrs:faq:*:*:*:*:*:*:*:*
cpe:2.3:a:otrs:otrs:*:*:*:*:*:*:*:*

Information

Published : 2021-03-22 09:15

Updated : 2021-03-25 08:02


NVD link : CVE-2021-21438

Mitre link : CVE-2021-21438

Products Affected
CWE
CWE-276

Incorrect Default Permissions