Zammad 5.3.x (Fixed 5.4.0) is vulnerable to Incorrect Access Control. An authenticated attacker could gain information about linked accounts of users involved in their tickets using the Zammad API.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zammad zammad |