Denial-of-Service Vulnerability in Enhancesoft osTicket Ticket Number Generator

Denial-of-Service Vulnerability in Enhancesoft osTicket Ticket Number Generator

CVE-2018-7194 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

Integer format vulnerability in the ticket number generator in Enhancesoft osTicket before 1.10.2 allows remote attackers to cause a denial-of-service (preventing the creation of new tickets) via a large number of digits in the ticket number format setting.

Learn more about our Web Application Penetration Testing UK.