Описание
In Zammad 5.0.2, agents can configure "out of office" periods and substitute persons. If the substitute persons didn't have the same permissions as the original agent, they could receive ticket notifications for tickets that they have no access to.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:zammad:zammad:5.0.2:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00179
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
CVSS3: 5.3
debian
больше 3 лет назад
In Zammad 5.0.2, agents can configure "out of office" periods and subs ...
CVSS3: 5.3
github
больше 3 лет назад
In Zammad 5.0.2, agents can configure "out of office" periods and substitute persons. If the substitute persons didn't have the same permissions as the original agent, they could receive ticket notifications for tickets that they have no access to.
EPSS
Процентиль: 40%
0.00179
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
NVD-CWE-Other