CVSS 3.1 Score 4.3 of 10 (medium)


Published Jul 24, 2023
Updated: Aug 1, 2023
CWE ID 863
CWE ID 269


CVE-2023-38058 is a vulnerability that affects OTRS versions 8.0.X before 8.0.35. It is categorized as an improper privilege check, specifically in the OTRS ticket move action in the agent interface. This vulnerability allows any authenticated attacker with agent privileges to move a ticket without the necessary permission. The risk score for this vulnerability is 10, indicating a high potential danger to organizations using affected versions of OTRS. To remediate this issue, organizations should update their OTRS installations to version 8.0.35 or later, which includes the necessary fixes for this vulnerability.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-38058 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options