CVE-2022-4427: 
Linux Debian vulnerability analysis and mitigation

CVE-2022-4427 is an Improper Input Validation vulnerability discovered in OTRS AG OTRS and ((OTRS)) Community Edition that allows SQL Injection via TicketSearch Webservice. The vulnerability affects OTRS versions from 7.0.1 before 7.0.40 Patch 1, from 8.0.1 before 8.0.28 Patch 1, and ((OTRS)) Community Edition from 6.0.1 through 6.0.34. The vulnerability was disclosed on December 19, 2022 (NVD, Vendor Advisory).

The vulnerability is classified as an Improper Input Validation (CWE-20) issue that leads to SQL Injection (CAPEC-66). The CVSS v3.1 base scores vary between sources, with NVD rating it as 9.8 CRITICAL (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) while OTRS AG rates it as 6.5 MEDIUM (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N). The vulnerability specifically requires the TicketSearch Webservice to be configured for exposure (Vendor Advisory).

The vulnerability allows attackers to perform SQL injection attacks through the TicketSearch Webservice, potentially leading to unauthorized access to sensitive data stored in the OTRS database (Vendor Advisory).

The vulnerability has been patched in OTRS version 8.0.28 Patch 1 and OTRS 7.0.40 Patch 1. Users are advised to update to these versions or later to mitigate the vulnerability. For Debian 10 users, the fix is available in version 6.0.16-2+deb10u1 (Debian Advisory, Vendor Advisory).