← Volver a CVEs
CVE-2025-61873
LOW2.6
Descripcion
Best Practical Request Tracker (RT) before 4.4.9, 5.0.9, and 6.0.2 allows CSV Injection via ticket values when TSV export is used.
Detalles CVE
Puntuacion CVSS v3.12.6
SeveridadLOW
Vector CVSSCVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:N/I:L/A:N
Vector de ataqueNETWORK
ComplejidadHIGH
Privilegios requeridosHIGH
Interaccion usuarioREQUIRED
Publicado1/16/2026
Ultima modificacion1/26/2026
Fuentenvd
Avistamientos honeypot0
Debilidades (CWE)
CWE-1236
Referencias
https://docs.bestpractical.com/release-notes/rt/index.html(cve@mitre.org)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.