Security Advisory

CVE-2022-0474

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-07 10:25:13

Last updated 2024-09-16 22:14:40

Assigner OTRS

State PUBLISHED

Description

Full list of recipients from customer users in a contact field could be disclosed in notification emails event when the notification is set to be sent to each recipient individually. This issue affects: OTRS AG OTRSCustomContactFields 8.0.x version: 8.0.11 and prior versions.

← Browse all CVEs View on cve.org ↗