An issue was discovered in Zammad before 3.4.1. There is an authentication bypass in the SSO endpoint via a crafted header, when SSO is not configured. An attacker can create a valid and authenticated session that can be used to perform any actions in the name of other users.
View Full Alert
Related Posts
CVE-2020-26028 (zammad)An issue was discovered in Zammad before 3.4.1. Admin Users without a ticket.* permission can access Tickets. View Full Alert
CVE-2020-26029 (zammad)An issue was discovered in Zammad before 3.4.1. There are wrong authorization checks for impersonation requests via X-On-Behalf-Of. The authorization checks are performed for the actual user and not the…
CVE-2020-10936Sympa before 6.2.56 allows privilege escalation. View Full Alert
