Vulnerabilities > Zammad > Zammad

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2021-44886 Unspecified vulnerability in Zammad 5.0.2
In Zammad 5.0.2, agents can configure "out of office" periods and substitute persons.
network
low complexity
zammad
5.3
5.3
2021-10-11 CVE-2021-42137 Incorrect Authorization vulnerability in Zammad
An issue was discovered in Zammad before 5.0.1.
network
low complexity
zammad CWE-863
5.0
5.0
2021-10-07 CVE-2021-42084 Infinite Loop vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
low complexity
zammad CWE-835
4.0
4.0
2021-10-07 CVE-2021-42085 Cross-site Scripting vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
zammad CWE-79
3.5
3.5
2021-10-07 CVE-2021-42086 Unspecified vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
low complexity
zammad
6.5
6.5
2021-10-07 CVE-2021-42087 Unspecified vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
low complexity
zammad
4.0
4.0
2021-10-07 CVE-2021-42088 Cross-site Scripting vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
zammad CWE-79
4.3
4.3
2021-10-07 CVE-2021-42089 Information Exposure vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
low complexity
zammad CWE-200
5.0
5.0
2021-10-07 CVE-2021-42090 Deserialization of Untrusted Data vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
low complexity
zammad CWE-502
7.5
7.5
2021-10-07 CVE-2021-42091 Server-Side Request Forgery (SSRF) vulnerability in Zammad
An issue was discovered in Zammad before 4.1.1.
network
low complexity
zammad CWE-918
6.4
6.4