← back
CVE-2022-27331

CVE-2022-27331

EPSS 0.7%
An access control issue in Zammad v5.0.3 broadcasts administrative configuration changes to all users who have an active application instance, including settings that should only be visible to authenticated users.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://zammad.com/de/advisories/zaa-2022-02