openSUSE Security Update : otrs (openSUSE-2017-1117)
Medium Nessus Plugin ID 103624
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for otrs to version 3.3.18 fixes the following issue :
This security issue was fixed :
- CVE-2017-14635: Remote authenticated users could have leveraged statistics-write permissions to gain privileges via code injection (bsc#1059691).
SolutionUpdate the affected otrs packages.