CVE-2026-14871

osTicket · osTicket

osTicket suffers from an incorrect authorization vulnerability that may allow authenticated users to perform unauthorized actions.

Executive summary

osTicket is affected by an incorrect authorization flaw that could allow authenticated users to perform actions exceeding their intended permissions.

Vulnerability

This vulnerability involves incorrect authorization (CWE-863) within the osTicket application. It requires the attacker to be an authenticated user, who can then bypass permission checks to perform unauthorized operations.

Business impact

An authorization bypass can lead to unauthorized data modification, privilege escalation, or access to sensitive support tickets and customer information. Given the CVSS score of 7.1, this represents a high risk to the integrity and confidentiality of the helpdesk system, which often holds sensitive client communication.

Remediation

Immediate Action: Update osTicket to version 1.18.4 or 1.17.8 immediately to resolve the authorization logic error.

Proactive Monitoring: Review audit logs for unexpected administrative actions or modifications performed by standard user accounts.

Compensating Controls: Implement strict role-based access control policies and review user permissions to ensure that only authorized personnel have access to sensitive helpdesk functions.

Exploitation status

Public Exploit Available: Yes, a public proof-of-concept exists on GitHub.

Analyst recommendation

Due to the availability of a public proof-of-concept and the high severity score, osTicket administrators should apply the provided patches in versions 1.18.4 or 1.17.8 without delay. Failure to update leaves the system exposed to potential unauthorized actions by malicious internal or compromised external users.