{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T01:48:18.985","vulnerabilities":[{"cve":{"id":"CVE-2024-43444","sourceIdentifier":"security@otrs.com","published":"2024-08-26T09:15:04.760","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match and debugging for the authentication backend has been enabled.\n\nThis issue affects: \n\n  *  OTRS from 7.0.X through 7.0.50\n  *  OTRS 8.0.X\n  *  OTRS 2023.X\n  *  OTRS from 2024.X through 2024.5.X\n  *  ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected"},{"lang":"es","value":"Las contraseñas de agentes y clientes se muestran en texto plano en el módulo de registro de administración de OTRS si ciertas configuraciones relacionadas con las fuentes de autenticación coinciden y se ha habilitado la depuración para el backend de autenticación. Este problema afecta a: * OTRS desde 7.0.X hasta 7.0.50 * OTRS 8.0.X * OTRS 2023.X * OTRS desde 2024.X hasta 2024.5.X * ((OTRS)) Edición comunitaria: 6.0.x Productos basados en ((OTRS)) Community Edition también es muy probable que se vea afectada"}],"metrics":{"cvssMetricV31":[{"source":"security@otrs.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":4.2}]},"weaknesses":[{"source":"security@otrs.com","type":"Secondary","description":[{"lang":"en","value":"CWE-532"}]}],"references":[{"url":"https://otrs.com/release-notes/otrs-security-advisory-2024-12/","source":"security@otrs.com"}]}}]}