What is the severity of CVE-2014-9324?

CVE-2014-9324 is classified as a high severity vulnerability due to its ability to allow remote authenticated users to access and modify arbitrary tickets.

How do I fix CVE-2014-9324?

To fix CVE-2014-9324, update OTRS Help Desk to version 3.2.17, 3.3.11 or 4.0.3 or later.

What versions of OTRS Help Desk are affected by CVE-2014-9324?

CVE-2014-9324 affects OTRS Help Desk versions 3.2.x prior to 3.2.17, 3.3.x prior to 3.3.11, and 4.0.x prior to 4.0.3.

What impact does CVE-2014-9324 have on affected systems?

The impact of CVE-2014-9324 is that it allows remote authenticated users to manipulate ticketing information, potentially leading to unauthorized access to sensitive information.

Who should be concerned about CVE-2014-9324?

Organizations using affected versions of OTRS Help Desk should be concerned about CVE-2014-9324 and take immediate action to mitigate the risk.

Vulnerability/
CVE-2014-9324

medium

CWE

264

19/12/2014

6/8/2024

CVE-2014-9324

First published: Fri Dec 19 2014(Updated: )

The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access and modify arbitrary tickets via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
OTRS Open Ticket Request System	=3.2.0
OTRS Open Ticket Request System	=3.2.1
OTRS Open Ticket Request System	=3.2.2
OTRS Open Ticket Request System	=3.2.3
OTRS Open Ticket Request System	=3.2.4
OTRS Open Ticket Request System	=3.2.5
OTRS Open Ticket Request System	=3.2.6
OTRS Open Ticket Request System	=3.2.7
OTRS Open Ticket Request System	=3.2.8
OTRS Open Ticket Request System	=3.2.9
OTRS Open Ticket Request System	=3.2.10
OTRS Open Ticket Request System	=3.2.11
OTRS Open Ticket Request System	=3.2.12
OTRS Open Ticket Request System	=3.2.13
OTRS Open Ticket Request System	=3.2.14
OTRS Open Ticket Request System	=3.2.15
OTRS Open Ticket Request System	=3.2.16
OTRS Open Ticket Request System	=3.3.0
OTRS Open Ticket Request System	=3.3.1
OTRS Open Ticket Request System	=3.3.2
OTRS Open Ticket Request System	=3.3.3
OTRS Open Ticket Request System	=3.3.4
OTRS Open Ticket Request System	=3.3.5
OTRS Open Ticket Request System	=3.3.6
OTRS Open Ticket Request System	=3.3.7
OTRS Open Ticket Request System	=3.3.8
OTRS Open Ticket Request System	=3.3.9
OTRS Open Ticket Request System	=3.3.10
OTRS Open Ticket Request System	=4.0.0
OTRS Open Ticket Request System	=4.0.1
OTRS Open Ticket Request System	=4.0.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-9324?
CVE-2014-9324 is classified as a high severity vulnerability due to its ability to allow remote authenticated users to access and modify arbitrary tickets.
How do I fix CVE-2014-9324?
To fix CVE-2014-9324, update OTRS Help Desk to version 3.2.17, 3.3.11 or 4.0.3 or later.
What versions of OTRS Help Desk are affected by CVE-2014-9324?
CVE-2014-9324 affects OTRS Help Desk versions 3.2.x prior to 3.2.17, 3.3.x prior to 3.3.11, and 4.0.x prior to 4.0.3.
What impact does CVE-2014-9324 have on affected systems?
The impact of CVE-2014-9324 is that it allows remote authenticated users to manipulate ticketing information, potentially leading to unauthorized access to sensitive information.
Who should be concerned about CVE-2014-9324?
Organizations using affected versions of OTRS Help Desk should be concerned about CVE-2014-9324 and take immediate action to mitigate the risk.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/last-modified-date
agent/severity
agent/weakness
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/otrs
canonical/otrs open ticket request system
version/otrs open ticket request system/3.2.0
version/otrs open ticket request system/3.2.1
version/otrs open ticket request system/3.2.2
version/otrs open ticket request system/3.2.3
version/otrs open ticket request system/3.2.4
version/otrs open ticket request system/3.2.5
version/otrs open ticket request system/3.2.6
version/otrs open ticket request system/3.2.7
version/otrs open ticket request system/3.2.8
version/otrs open ticket request system/3.2.9
version/otrs open ticket request system/3.2.10
version/otrs open ticket request system/3.2.11
version/otrs open ticket request system/3.2.12
version/otrs open ticket request system/3.2.13
version/otrs open ticket request system/3.2.14
version/otrs open ticket request system/3.2.15
version/otrs open ticket request system/3.2.16
version/otrs open ticket request system/3.3.0
version/otrs open ticket request system/3.3.1
version/otrs open ticket request system/3.3.2
version/otrs open ticket request system/3.3.3
version/otrs open ticket request system/3.3.4
version/otrs open ticket request system/3.3.5
version/otrs open ticket request system/3.3.6
version/otrs open ticket request system/3.3.7
version/otrs open ticket request system/3.3.8
version/otrs open ticket request system/3.3.9
version/otrs open ticket request system/3.3.10
version/otrs open ticket request system/4.0.0
version/otrs open ticket request system/4.0.1
version/otrs open ticket request system/4.0.2