Zammad 5.2.0 suffers from Incorrect Access Control. Zammad did not correctly perform authorization on certain attachment endpoints. This could be abused by an unauthenticated malicious user to gain access to attachments, such as emails or attached files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zammad zammad 5.2.0 |