Vulnerability Database

Published: Jun 13, 2022
Updated: Apr 14, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-32741" target="_blank" rel="noopener"> CVE-2022-32741
Severity: Medium
Exploit:

300,830

Total vulnerabilities in the database

Attacker is able to determine if the provided username exists (and it's valid) using Request New Password feature, based on the response time.

CVSS v3:

CVSS v2:

No CWE or OWASP classifications available.

Software	From	Fixed in
otrs / otrs	8.0.0	8.0.23
otrs / otrs	7.0.0	7.0.35

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.