CVE-2026-48187
MediumCVSS 5.7Exploitation Probability (EPSS)
Low risk7th percentile - higher than 7% of all known CVEs
Summary
Uncontrolled resource allocation in email handling in OTRS may lead to excessive allocation, potentially causing the web server to abort. This issue affects OTRS versions 8.0.X, 2023.X, 2024.X, 2025.X, and 2026.X before 2026.4.X.
Risk Assessment
The organization may experience service interruptions related to email handling, which could impact business operations and customer satisfaction.
Recommendation
It is recommended to upgrade OTRS to version 2026.4.X or newer and to monitor resource allocation to prevent server overload.
Original NVD description (English source)
An uncontrolled allocation of resources without limits or throttling in the e-mail handling in OTRS allows excessive allocation which may lead to the abortion of the webserver.This issue affects OTRS: * 8.0.X * 2023.X * 2024.X * 2025.X * 2026.X before 2026.4.X Please note that ((OTRS)) Community Edition 6.x, OTRS 7.x and products based on the ((OTRS)) Community Edition also very likely to be affected

