Best Practical Request Tracker (RT) 5 before 5.0.5 allows Information Disclosure via a transaction search in the transaction query builder.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - Best Practical Request Tracker (RT) 5 before 5.0.5 allows Information Disclosure via a transaction search     in the transaction query builder. (CVE-2023-45024)

Note that Nessus relies on the presence of the package as reported by the vendor.

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7692-1 advisory.

    It was discovered that Request Tracker was susceptible to timing attacks. An attacker could possibly use     this issue to access sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2021-38562)

    It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious     attachments were supplied. An attacker could possibly use this issue to execute arbitrary code. This issue     only affected Ubuntu 22.04 LTS. (CVE-2022-25802)

    It was discovered that Request Tracker would incorrectly redirect users in certain instances. An attacker     could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS.
    (CVE-2022-25803)

    Tom Wolters discovered that Request Tracker could leak information when malicious email headers were     supplied. An attacker could possibly use this issue to access sensitive information. This issue only     affected Ubuntu 22.04 LTS. (CVE-2023-41259, CVE-2023-41260)

    It was discovered that Request Tracker could leak information through its transaction search. An attacker     with access to the transaction query builder of Request Tracker could possibly use this issue to access     sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-45024)

    It was discovered that Request Tracker erroneously stored ticket information in a web browser's cache. An     attacker with direct access to a system could possibly use this issue to access sensitive information.
    This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2024-3262)

    It was discovered that Request Tracker made use of an obsolete cryptographic algorithm for emails sent     with S/MIME encryption. An attacker could possibly use this issue to access sensitive information.
    (CVE-2025-2545)

    It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious     parameters were included in a search URL. An attacker could possibly use this issue to execute arbitrary     code. (CVE-2025-30087)

    It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious     permalinks or assets were provided. An attacker could possibly use this issue to execute arbitrary code.
    (CVE-2025-31500, CVE-2025-31501)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5541 advisory.

  - Request Tracker reports: CVE-2023-41259 SECURITY: RT is vulnerable to unvalidated email headers in     incoming email and the mail-gateway REST interface. CVE-2023-41260 SECURITY: RT is vulnerable to     information leakage via response messages returned from requests sent via the mail-gateway REST interface.
    CVE-2023-45024 SECURITY: RT 5.0 is vulnerable to information leakage via transaction searches made by     authenticated users in the transaction query builder. (CVE-2023-41259, CVE-2023-41260, CVE-2023-45024)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the e14b9870-62a4-11ee-897b-000bab9f87f1 advisory.

  - Request Tracker reports: CVE-2023-41259 SECURITY: RT is vulnerable to unvalidated email headers in     incoming email and the mail-gateway REST interface. CVE-2023-41260 SECURITY: RT is vulnerable to     information leakage via response messages returned from requests sent via the mail-gateway REST interface.
    CVE-2023-45024 SECURITY: RT 5.0 is vulnerable to information leakage via transaction searches made by     authenticated users in the transaction query builder. (CVE-2023-41259, CVE-2023-41260, CVE-2023-45024)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
258194	Linux Distros Unpatched Vulnerability : CVE-2023-45024	Nessus	Misc.	high
252276	Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : Request Tracker vulnerabilities (USN-7692-1)	Nessus	Ubuntu Local Security Checks	low
184062	Debian DSA-5541-1 : request-tracker5 - security update	Nessus	Debian Local Security Checks	high
183489	FreeBSD : Request Tracker -- multiple vulnerabilities (e14b9870-62a4-11ee-897b-000bab9f87f1)	Nessus	FreeBSD Local Security Checks	high

Detections

Analytics

CVE-2023-45024

high

Tenable Plugins

high

low

high

high