Rolf Schmidt

5 exploits Active since Jun 2020
CVE-2020-14213 WRITEUP MEDIUM WRITEUP
Zammad < 3.3.1 - Missing Authorization
In Zammad before 3.3.1, a Customer has ticket access that should only be available to an Agent (e.g., read internal data, split, or merge).
CVSS 5.4
CVE-2020-14214 WRITEUP MEDIUM WRITEUP
Zammad < 3.3.1 - Incorrect Authorization
Zammad before 3.3.1, when Domain Based Assignment is enabled, relies on a claimed e-mail address for authorization decisions. An attacker can register a new account that will have access to all tickets of an arbitrary Organization.
CVSS 6.5
CVE-2020-29158 WRITEUP MEDIUM WRITEUP
Zammad < 3.5.1 - Missing Authorization
An issue was discovered in Zammad before 3.5.1. An Agent with Customer permissions in a Group can bypass intended access control on internal Articles via the Ticket detail view.
CVSS 4.3
CVE-2020-29159 WRITEUP MEDIUM WRITEUP
Zammad <3.5.1 - Privilege Escalation
An issue was discovered in Zammad before 3.5.1. The default signup Role (for newly created Users) can be a privileged Role, if configured by an admin. This behvaior was unintended.
CVSS 4.9
CVE-2020-29160 WRITEUP HIGH WRITEUP
Zammad < 3.5.1 - Missing Authorization
An issue was discovered in Zammad before 3.5.1. A REST API call allows an attacker to change Ticket Article data in a way that defeats auditing.
CVSS 7.5