A vulnerability was found in OTRS Community Edition up to 2026.3.x and classified as problematic . This issue affects some unknown processing of the component Customer Backend Module . The manipulation results in information disclosure. This vulnerability is reported as CVE-2026-48189 . The attack can be launched remotely. No exploit exists. It is suggested to upgrade the affected component.