4.5
CVE-2026-6060
- EPSS 0.19%
- Veröffentlicht 20.04.2026 18:20:01
- Zuletzt bearbeitet 21.04.2026 16:20:24
- Quelle security@otrs.com
- CVE-Watchlists
- Unerledigt
Possible DoS via SQL Box
A vulnerability in the SQL Box in the admin interface of OTRS leads to an uncontrolled resource consumption leading to a DoS against the webserver. will be killed by the systemThis issue affects OTRS: * 7.0.X * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.3.X
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerOTRS AG
≫
Produkt
OTRS
Default Statusunknown
Version
7.0.x
Status
affected
Version
8.0.x
Status
affected
Version
2023.x
Status
affected
Version
2024.x
Status
affected
Version
2025.x
Status
affected
Version <=
2026.2.x
Version
2026.x
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.088 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@otrs.com | 4.5 | 0.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
CWE-770 Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.
https://otrs.com/release-notes/otrs-security-advisory-2026-01/