Plain Text Password Exposure in OTRS AgentInterface and ExternalInterface

Plain Text Password Exposure in OTRS AgentInterface and ExternalInterface

CVE-2023-6254 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A Vulnerability in OTRS AgentInterface and ExternalInterface allows the reading of plain text passwords which are send back to the client in the server response- This issue affects OTRS: from 8.0.X through 8.0.37.

Learn more about our Cis Benchmark Audit For Server Software.