CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-35302
https://notcve.org/view.php?id=CVE-2021-35302
28 Jun 2021 — Incorrect Access Control for linked Tickets in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information. Un Control de Acceso Incorrecto para los Tickets vinculados en Zammad versiones 1.0.x hasta 4.0.0, permite a atacantes remotos obtener información confidencial • https://zammad.com/en/advisories/zaa-2021-04 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-35303
https://notcve.org/view.php?id=CVE-2021-35303
28 Jun 2021 — Cross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via the User Avatar attribute. Una vulnerabilidad de tipo Cross Site Scripting (XSS) en Zammad versiones 1.0.x hasta 4.0.0, permite a atacantes remotos ejecutar un script web o HTML arbitrario por medio del atributo User Avatar • https://zammad.com/en/advisories/zaa-2021-06 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26028
https://notcve.org/view.php?id=CVE-2020-26028
28 Dec 2020 — An issue was discovered in Zammad before 3.4.1. Admin Users without a ticket.* permission can access Tickets. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Los Usuarios Administradores sin un permiso ticket.* pueden acceder a Tickets • https://zammad.com/news/security-advisory-zaa-2020-19 • CWE-863: Incorrect Authorization •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26029
https://notcve.org/view.php?id=CVE-2020-26029
28 Dec 2020 — An issue was discovered in Zammad before 3.4.1. There are wrong authorization checks for impersonation requests via X-On-Behalf-Of. The authorization checks are performed for the actual user and not the one given in the X-On-Behalf-Of header. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Se presentan unas comprobaciones de autorización incorrectas para peticiones de suplantación de identidad por medio de X-On-Behalf-Of. • https://zammad.com/news/security-advisory-zaa-2020-20 • CWE-863: Incorrect Authorization •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26030
https://notcve.org/view.php?id=CVE-2020-26030
28 Dec 2020 — An issue was discovered in Zammad before 3.4.1. There is an authentication bypass in the SSO endpoint via a crafted header, when SSO is not configured. An attacker can create a valid and authenticated session that can be used to perform any actions in the name of other users. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Se presenta una omisión de autenticación en el endpoint de SSO por medio de un encabezado diseñado, cuando la SSO no está configurada. • https://zammad.com/news/security-advisory-zaa-2020-18 • CWE-287: Improper Authentication •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26031
https://notcve.org/view.php?id=CVE-2020-26031
28 Dec 2020 — An issue was discovered in Zammad before 3.4.1. The global-search feature leaks Knowledge Base drafts to Knowledge Base readers (who are authenticated but have insufficient permissions). Se detectó un problema en Zammad versiones anteriores a 3.4.1. La funcionalidad global-search filtra los borradores Knowledge Base a los lectores Knowledge Base (que están autenticados pero no presentan permisos suficientes) • https://zammad.com/news/security-advisory-zaa-2020-16 • CWE-276: Incorrect Default Permissions •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26032
https://notcve.org/view.php?id=CVE-2020-26032
28 Dec 2020 — An SSRF issue was discovered in Zammad before 3.4.1. The SMS configuration interface for Massenversand is implemented in a way that renders the result of a test request to the User. An attacker can use this to request any URL via a GET request from the network interface of the server. This may lead to disclosure of information from intranet systems. Se detectó un problema de SSRF en Zammad versiones anteriores a 3.4.1. • https://zammad.com/news/security-advisory-zaa-2020-15 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26033
https://notcve.org/view.php?id=CVE-2020-26033
28 Dec 2020 — An issue was discovered in Zammad before 3.4.1. The Tag and Link REST API endpoints (for add and delete) lack a CSRF token check. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Los endpoints de la API REST de Etiqueta y Enlace (para agregar y eliminar) carecen de una comprobación de token CSRF • https://zammad.com/news/security-advisory-zaa-2020-17 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26034
https://notcve.org/view.php?id=CVE-2020-26034
28 Dec 2020 — An account-enumeration issue was discovered in Zammad before 3.4.1. The Create User functionality is implemented in a way that would enable an anonymous user to guess valid user email addresses. The application responds differently depending on whether the input supplied was recognized as associated with a valid user. Se detectó un problema de enumeración de cuentas en Zammad versiones anteriores a 3.4.1. La funcionalidad Create User es implementada de una manera que permitiría a un usuario anónimo adi... • https://zammad.com/news/security-advisory-zaa-2020-14 •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26035
https://notcve.org/view.php?id=CVE-2020-26035
28 Dec 2020 — An issue was discovered in Zammad before 3.4.1. There is Stored XSS via a Tags element in a TIcket. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Se presenta una vulnerabilidad de tipo XSS almacenado por medio de un elemento Tags en un Ticket • https://zammad.com/news/security-advisory-zaa-2020-21 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •