LOWCVE-2022-0473CVSS 3.8

CVE-2022-0473: XSS in OTRS 7.0.x

Platform

otrs

Component

otrs

Fixed in

7.0.32

AI Confidence: highNVDEPSS 0.4%Reviewed: May 2026

View on NVD

Save

CVE-2022-0473 describes a cross-site scripting (XSS) vulnerability in OTRS versions 7.0.0 through 7.0.31. This vulnerability allows an attacker to inject malicious JavaScript code into the error message of a regular expression check within dynamic fields. Exploitation requires administrator privileges and can lead to code execution within the administrator's browser session. A patch is available to resolve this issue.

Impact and Attack Scenarios

Successful exploitation of CVE-2022-0473 could allow an attacker to execute arbitrary JavaScript code in the context of an OTRS administrator's browser. This could lead to session hijacking, credential theft, or defacement of the OTRS interface. The attacker could potentially gain access to sensitive data stored within OTRS, including customer information, support tickets, and internal communications. While the CVSS score is LOW, the potential for administrator account compromise makes this a significant risk, particularly in environments where OTRS is used to manage critical business processes.

Exploitation Context

CVE-2022-0473 was publicly disclosed on February 7, 2022. No public proof-of-concept (PoC) code has been widely reported. The vulnerability's LOW severity rating and lack of public exploits suggest a low probability of active exploitation at this time. It is not listed on the CISA KEV catalog.

Threat Intelligence

Exploit Status

Proof of ConceptUnknown

CISA KEVNO

Internet ExposureHigh

EPSS

0.36% (58% percentile)

CVSS Vector

Affected Software

Componentotrs

VendorOTRS AG

Affected rangeFixed in

7.0.x – 7.0.317.0.32

Weakness Classification (CWE)

CWE-79

Timeline

Reserved2022-02-02
Published2022-02-07
Modified2024-09-16
EPSS updated2026-04-02

Unpatched — 1567 days since disclosure

Mitigation and Workarounds

The primary mitigation for CVE-2022-0473 is to upgrade to a patched version of OTRS. Consult the official OTRS advisory for the specific version containing the fix. As a temporary workaround, administrators should carefully review and validate all dynamic field configurations, paying close attention to regular expression checks. Implement strict input validation and sanitization on all user-supplied data used in dynamic fields. Consider using a Web Application Firewall (WAF) with XSS filtering rules to block malicious payloads.

How to fix

Actualice OTRS a una versión posterior a la 7.0.31. Esto solucionará la vulnerabilidad XSS en los mensajes de error de los campos dinámicos.

CVE Security Newsletter

Vulnerability analysis and critical alerts directly to your inbox.

Frequently asked questions

What is CVE-2022-0473 — XSS in OTRS?

CVE-2022-0473 is a cross-site scripting (XSS) vulnerability in OTRS versions 7.0.0–7.0.31 that allows attackers to inject malicious JavaScript code.

Am I affected by CVE-2022-0473 in OTRS?

You are affected if you are running OTRS versions 7.0.0 through 7.0.31 and have not upgraded to a patched version.

How do I fix CVE-2022-0473 in OTRS?

Upgrade to a patched version of OTRS. Consult the official OTRS advisory for the specific version containing the fix.

Is CVE-2022-0473 being actively exploited?

There are no widespread reports of active exploitation, but the vulnerability remains a potential risk.

Where can I find the official OTRS advisory for CVE-2022-0473?

Refer to the official OTRS security advisory for details: [https://otrs.com/security-advisories/otrs-security-advisory-2022-0473/](https://otrs.com/security-advisories/otrs-security-advisory-2022-0473/)