Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows     sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm.
    (CVE-2021-38562)

Note that Nessus relies on the presence of the package as reported by the vendor.

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7692-1 advisory.

    It was discovered that Request Tracker was susceptible to timing attacks. An attacker could possibly use     this issue to access sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2021-38562)

    It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious     attachments were supplied. An attacker could possibly use this issue to execute arbitrary code. This issue     only affected Ubuntu 22.04 LTS. (CVE-2022-25802)

    It was discovered that Request Tracker would incorrectly redirect users in certain instances. An attacker     could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS.
    (CVE-2022-25803)

    Tom Wolters discovered that Request Tracker could leak information when malicious email headers were     supplied. An attacker could possibly use this issue to access sensitive information. This issue only     affected Ubuntu 22.04 LTS. (CVE-2023-41259, CVE-2023-41260)

    It was discovered that Request Tracker could leak information through its transaction search. An attacker     with access to the transaction query builder of Request Tracker could possibly use this issue to access     sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-45024)

    It was discovered that Request Tracker erroneously stored ticket information in a web browser's cache. An     attacker with direct access to a system could possibly use this issue to access sensitive information.
    This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2024-3262)

    It was discovered that Request Tracker made use of an obsolete cryptographic algorithm for emails sent     with S/MIME encryption. An attacker could possibly use this issue to access sensitive information.
    (CVE-2025-2545)

    It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious     parameters were included in a search URL. An attacker could possibly use this issue to execute arbitrary     code. (CVE-2025-30087)

    It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious     permalinks or assets were provided. An attacker could possibly use this issue to execute arbitrary code.
    (CVE-2025-31500, CVE-2025-31501)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6529-1 advisory.

    It was discovered that Request Tracker incorrectly handled certain inputs. If a user or an automated     system were tricked into opening a specially crafted input file, a remote attacker could possibly use this     issue to obtain sensitive information. (CVE-2021-38562, CVE-2022-25802, CVE-2023-41259, CVE-2023-41260)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3057 advisory.

  - Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows     sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm.
    (CVE-2021-38562)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
258456	Linux Distros Unpatched Vulnerability : CVE-2021-38562	Nessus	Misc.	high
252276	Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : Request Tracker vulnerabilities (USN-7692-1)	Nessus	Ubuntu Local Security Checks	low
186541	Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Request Tracker vulnerabilities (USN-6529-1)	Nessus	Ubuntu Local Security Checks	high
162504	Debian DLA-3057-1 : request-tracker4 - LTS security update	Nessus	Debian Local Security Checks	high

Detections

Analytics

CVE-2021-38562

high

Tenable Plugins

high

low

high

high