CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26030
https://notcve.org/view.php?id=CVE-2020-26030
An issue was discovered in Zammad before 3.4.1. There is an authentication bypass in the SSO endpoint via a crafted header, when SSO is not configured. An attacker can create a valid and authenticated session that can be used to perform any actions in the name of other users. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Se presenta una omisión de autenticación en el endpoint de SSO por medio de un encabezado diseñado, cuando la SSO no está configurada. • https://zammad.com/news/security-advisory-zaa-2020-18 • CWE-287: Improper Authentication •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26031
https://notcve.org/view.php?id=CVE-2020-26031
An issue was discovered in Zammad before 3.4.1. The global-search feature leaks Knowledge Base drafts to Knowledge Base readers (who are authenticated but have insufficient permissions). Se detectó un problema en Zammad versiones anteriores a 3.4.1. La funcionalidad global-search filtra los borradores Knowledge Base a los lectores Knowledge Base (que están autenticados pero no presentan permisos suficientes) • https://zammad.com/news/security-advisory-zaa-2020-16 • CWE-276: Incorrect Default Permissions •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26032
https://notcve.org/view.php?id=CVE-2020-26032
An SSRF issue was discovered in Zammad before 3.4.1. The SMS configuration interface for Massenversand is implemented in a way that renders the result of a test request to the User. An attacker can use this to request any URL via a GET request from the network interface of the server. This may lead to disclosure of information from intranet systems. Se detectó un problema de SSRF en Zammad versiones anteriores a 3.4.1. • https://zammad.com/news/security-advisory-zaa-2020-15 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26033
https://notcve.org/view.php?id=CVE-2020-26033
An issue was discovered in Zammad before 3.4.1. The Tag and Link REST API endpoints (for add and delete) lack a CSRF token check. Se detectó un problema en Zammad versiones anteriores a 3.4.1. Los endpoints de la API REST de Etiqueta y Enlace (para agregar y eliminar) carecen de una comprobación de token CSRF • https://zammad.com/news/security-advisory-zaa-2020-17 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2020-26034
https://notcve.org/view.php?id=CVE-2020-26034
An account-enumeration issue was discovered in Zammad before 3.4.1. The Create User functionality is implemented in a way that would enable an anonymous user to guess valid user email addresses. The application responds differently depending on whether the input supplied was recognized as associated with a valid user. Se detectó un problema de enumeración de cuentas en Zammad versiones anteriores a 3.4.1. La funcionalidad Create User es implementada de una manera que permitiría a un usuario anónimo adivinar direcciones de correo electrónico de usuario válidas. • https://zammad.com/news/security-advisory-zaa-2020-14 •