Enhancesoft - Osticket CVE

Filtered by vendor Enhancesoft Subscribe

Filtered by product Osticket

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-42235	1 Enhancesoft	1 Osticket	2022-05-13	7.5 HIGH	9.8 CRITICAL
SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers to access the osTicket administration profile functionality.

Vulnerabilities (CVE)