6 matches found
CVE-2022-27332
An access control issue in Zammad v5.0.3 allows attackers to write entries to the CTI caller log without authentication. This vulnerability can allow attackers to execute phishing attacks or cause a Denial of Service DoS...
CVE-2022-27332
An access control issue in Zammad v5.0.3 allows attackers to write entries to the CTI caller log without authentication. This vulnerability can allow attackers to execute phishing attacks or cause a Denial of Service DoS...
CVE-2022-27332
An access control issue in Zammad v5.0.3 allows attackers to write entries to the CTI caller log without authentication. This vulnerability can allow attackers to execute phishing attacks or cause a Denial of Service DoS...
CVE-2022-27332
Summary (CVE-2022-27332): Zammad v5.0.3 contains an access control flaw that allows an unauthenticated attacker to write entries to the CTI caller log, enabling potential phishing attacks or DoS. Root cause: unauthorized access to the CTI logging pathway; impact: log manipulation, phishing, and s...
Zammad 访问控制错误漏洞
Zammad is a suite of ticket management software from the German company Zammad. A security vulnerability exists in Zammad version v5.0.3. An unauthenticated attacker could write entries to the CTI caller log...
PT-2022-18379 · Zammad · Zammad
Name of the Vulnerable Software and Affected Versions: Zammad version 5.0.3 Description: An access control issue allows attackers to write entries to the CTI caller log without authentication. This can enable attackers to execute phishing attacks or cause a Denial of Service DoS. Recommendations:...