CVE-2020-1768
5.4
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
Summary
The external frontend system uses numerous background calls to the backend. Each background request is treated as user activity so the SessionMaxIdleTime will not be reached. This issue affects: OTRS 7.0.x version 7.0.14 and prior versions.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| OTRS AG | OTRS | 7.0.x <= 7.0.14 | affected |
Weaknesses
- CWE-613: CWE-613 Insufficient Session Expiration
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.