Zammad is a suite of ticket management software from the German company Zammad. A trust management issue vulnerability exists in Zammad that stems from the fact that SSL/TLS is used in multiple subsystems to establish connections to external services without properly validating the hostname and certificate authority, which could be exploited by an attacker to cause a man-in-the-middle attack.
CPE | Name | Operator | Version |
---|---|---|---|
zammad zammad | eq | 6.1.0 |