Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-39051

Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package

Published

2022-09-05T07:15:08.117

Last Modified

2024-11-21T07:17:27.460

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.8 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-913
  • Type: Primary
    CWE-913
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application otrs otrs ≤ 6.0.32 Yes
Application otrs otrs < 7.0.37 Yes
Application otrs otrs < 8.0.25 Yes
References