exploitDog

GHSA-385m-q9q4-536h

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An issue was discovered in Zammad before 4.1.1. An Agent account can modify account data, and gain admin access, via a crafted request.

An issue was discovered in Zammad before 4.1.1. An Agent account can modify account data, and gain admin access, via a crafted request.

Ссылки

EPSS

Процентиль: 66%

0.00511

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-269

Связанные уязвимости

CVE-2021-42086

CVSS3: 8.8

nvd

больше 4 лет назад

An issue was discovered in Zammad before 4.1.1. An Agent account can modify account data, and gain admin access, via a crafted request.

CVE-2021-42086

CVSS3: 8.8

debian

больше 4 лет назад

An issue was discovered in Zammad before 4.1.1. An Agent account can m ...

EPSS

Процентиль: 66%

0.00511

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-269