usn-7692-1
Vulnerability from osv_ubuntu
Published
2025-08-13 15:40
Modified
2026-04-27 14:11
Summary
request-tracker5 vulnerabilities
Details

It was discovered that Request Tracker was susceptible to timing attacks. An attacker could possibly use this issue to access sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2021-38562)

It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious attachments were supplied. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-25802)

It was discovered that Request Tracker would incorrectly redirect users in certain instances. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-25803)

Tom Wolters discovered that Request Tracker could leak information when malicious email headers were supplied. An attacker could possibly use this issue to access sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-41259, CVE-2023-41260)

It was discovered that Request Tracker could leak information through its transaction search. An attacker with access to the transaction query builder of Request Tracker could possibly use this issue to access sensitive information. This issue only affected Ubuntu 22.04 LTS. (CVE-2023-45024)

It was discovered that Request Tracker erroneously stored ticket information in a web browser's cache. An attacker with direct access to a system could possibly use this issue to access sensitive information. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. (CVE-2024-3262)

It was discovered that Request Tracker made use of an obsolete cryptographic algorithm for emails sent with S/MIME encryption. An attacker could possibly use this issue to access sensitive information. (CVE-2025-2545)

It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious parameters were included in a search URL. An attacker could possibly use this issue to execute arbitrary code. (CVE-2025-30087)

It was discovered that Request Tracker was susceptible to cross-site scripting attacks when malicious permalinks or assets were provided. An attacker could possibly use this issue to execute arbitrary code. (CVE-2025-31500, CVE-2025-31501)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2021-38562",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2022-25802",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2022-25803",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2023-41259",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2023-41260",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2023-45024",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2024-3262",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-2545",
              "severity": [
                {
                  "score": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                  "type": "CVSS_V4"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-30087",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-31500",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-31501",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:22.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "request-tracker5",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-apache2",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-clients",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-db-mysql",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-db-postgresql",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-db-sqlite",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-doc-html",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-fcgi",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          },
          {
            "binary_name": "rt5-standalone",
            "binary_version": "5.0.1+dfsg-1ubuntu1+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:22.04:LTS",
        "name": "request-tracker5",
        "purl": "pkg:deb/ubuntu/request-tracker5@5.0.1+dfsg-1ubuntu1+esm1?arch=source\u0026distro=esm-apps/jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.0.1+dfsg-1ubuntu1+esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.0.1+dfsg-1ubuntu1"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2024-3262",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-2545",
              "severity": [
                {
                  "score": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                  "type": "CVSS_V4"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-30087",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-31500",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2025-31501",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:24.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "request-tracker5",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-apache2",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-clients",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-db-mysql",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-db-postgresql",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-db-sqlite",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-doc-html",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-fcgi",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          },
          {
            "binary_name": "rt5-standalone",
            "binary_version": "5.0.5+dfsg-2ubuntu0.1~esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:24.04:LTS",
        "name": "request-tracker5",
        "purl": "pkg:deb/ubuntu/request-tracker5@5.0.5+dfsg-2ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/noble"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.0.5+dfsg-2ubuntu0.1~esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "5.0.1+dfsg-1ubuntu1",
        "5.0.5+dfsg-2"
      ]
    }
  ],
  "aliases": [],
  "details": "It was discovered that Request Tracker was susceptible to timing\nattacks. An attacker could possibly use this issue to access sensitive\ninformation. This issue only affected Ubuntu 22.04 LTS. (CVE-2021-38562)\n\nIt was discovered that Request Tracker was susceptible to cross-site\nscripting attacks when malicious attachments were supplied. An attacker\ncould possibly use this issue to execute arbitrary code. This issue\nonly affected Ubuntu 22.04 LTS. (CVE-2022-25802)\n\nIt was discovered that Request Tracker would incorrectly redirect users\nin certain instances. An attacker could possibly use this issue to\ncause a denial of service. This issue only affected Ubuntu 22.04 LTS.\n(CVE-2022-25803)\n\nTom Wolters discovered that Request Tracker could leak information when\nmalicious email headers were supplied. An attacker could possibly\nuse this issue to access sensitive information. This issue only\naffected Ubuntu 22.04 LTS. (CVE-2023-41259, CVE-2023-41260)\n\nIt was discovered that Request Tracker could leak information through\nits transaction search. An attacker with access to the transaction\nquery builder of Request Tracker could possibly use this issue to\naccess sensitive information. This issue only affected Ubuntu 22.04\nLTS. (CVE-2023-45024)\n\nIt was discovered that Request Tracker erroneously stored ticket\ninformation in a web browser\u0027s cache. An attacker with direct access to\na system could possibly use this issue to access sensitive information.\nThis issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS.\n(CVE-2024-3262)\n\nIt was discovered that Request Tracker made use of an obsolete\ncryptographic algorithm for emails sent with S/MIME encryption. An\nattacker could possibly use this issue to access sensitive information.\n(CVE-2025-2545)\n\nIt was discovered that Request Tracker was susceptible to cross-site\nscripting attacks when malicious parameters were included in a search\nURL. An attacker could possibly use this issue to execute arbitrary\ncode. (CVE-2025-30087)\n\nIt was discovered that Request Tracker was susceptible to cross-site\nscripting attacks when malicious permalinks or assets were provided.\nAn attacker could possibly use this issue to execute arbitrary code.\n(CVE-2025-31500, CVE-2025-31501)",
  "id": "USN-7692-1",
  "modified": "2026-04-27T14:11:45Z",
  "published": "2025-08-13T15:40:22Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-7692-1"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2021-38562"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2022-25802"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2022-25803"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2023-41259"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2023-41260"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2023-45024"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2024-3262"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-2545"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-30087"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-31500"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2025-31501"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "request-tracker5 vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2021-38562",
    "UBUNTU-CVE-2022-25802",
    "UBUNTU-CVE-2022-25803",
    "UBUNTU-CVE-2023-41259",
    "UBUNTU-CVE-2023-41260",
    "UBUNTU-CVE-2023-45024",
    "UBUNTU-CVE-2024-3262",
    "UBUNTU-CVE-2025-2545",
    "UBUNTU-CVE-2025-30087",
    "UBUNTU-CVE-2025-31500",
    "UBUNTU-CVE-2025-31501"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…