27Oca
CVE-2025-24390 | OTRS 7.0.x/8.0.x/2023.x/2024.x missing secure attribute
A vulnerability has been found in OTRS 7.0.x/8.0.x/2023.x/2024.x and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to sensitive cookie without secure attribute. This vulnerability is known as CVE-2025-24390. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.