CVE-2023-29867 Information

May 04, 2023 cve

Description

Zammad 5.3.x (Fixed 5.4.0) is vulnerable to Incorrect Access Control. An authenticated attacker could gain information about linked accounts of users involved in their tickets using the Zammad API.

Reference

https://zammad.com/en/advisories/zaa-2023-02

Share on: