CVE-2020-14213
CVE-2020-14213 affects Zammad before version 3.3.1. The issue is an authorization flaw where a Customer can access ticket data and actions intended for Agents (e.g., reading internal data, splitting, or merging tickets). The available reports describe the root cause as improper access control wit...