CVE-2026-14871
osTicket · osTicket
osTicket suffers from an incorrect authorization vulnerability that may allow authenticated users to perform unauthorized actions.
Executive summary
osTicket is affected by an incorrect authorization flaw that could allow authenticated users to perform actions exceeding their intended permissions.
Vulnerability
This vulnerability involves incorrect authorization (CWE-863) within the osTicket application. It requires the attacker to be an authenticated user, who can then bypass permission checks to perform unauthorized operations.
Business impact
An authorization bypass can lead to unauthorized data modification, privilege escalation, or access to sensitive support tickets and customer information. Given the CVSS score of 7.1, this represents a high risk to the integrity and confidentiality of the helpdesk system, which often holds sensitive client communication.
Remediation
Immediate Action: Update osTicket to version 1.18.4 or 1.17.8 immediately to resolve the authorization logic error.
Proactive Monitoring: Review audit logs for unexpected administrative actions or modifications performed by standard user accounts.
Compensating Controls: Implement strict role-based access control policies and review user permissions to ensure that only authorized personnel have access to sensitive helpdesk functions.
Exploitation status
Public Exploit Available: Yes, a public proof-of-concept exists on GitHub.
Analyst recommendation
Due to the availability of a public proof-of-concept and the high severity score, osTicket administrators should apply the provided patches in versions 1.18.4 or 1.17.8 without delay. Failure to update leaves the system exposed to potential unauthorized actions by malicious internal or compromised external users.