Candidate: CVE-2014-9324
PublicDate: 2014-12-19 15:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9324
 https://www.otrs.com/security-advisory-2014-06-incomplete-access-control/
 http://secunia.com/advisories/59875
Description:
 The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before
 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access
 and modify arbitrary tickets via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_otrs2:
upstream_otrs2: released (3.3.9-3)
lucid_otrs2: ignored (reached end-of-life)
precise_otrs2: ignored (reached end-of-life)
precise/esm_otrs2: DNE (precise was needed)
trusty_otrs2: ignored (reached end-of-life)
trusty/esm_otrs2: DNE (trusty was needed)
utopic_otrs2: ignored (reached end-of-life)
vivid_otrs2: ignored (reached end-of-life)
vivid/stable-phone-overlay_otrs2: DNE
vivid/ubuntu-core_otrs2: DNE
wily_otrs2: ignored (reached end-of-life)
xenial_otrs2: not-affected (3.3.11-1)
yakkety_otrs2: ignored (reached end-of-life)
zesty_otrs2: ignored (reached end-of-life)
artful_otrs2: ignored (reached end-of-life)
bionic_otrs2: not-affected (3.3.11-1)
cosmic_otrs2: not-affected (3.3.11-1)
disco_otrs2: not-affected (3.3.11-1)
devel_otrs2: not-affected (3.3.11-1)