VYPR
Unrated severityNVD Advisory· Published Feb 4, 2022· Updated Aug 4, 2024

CVE-2021-44886

CVE-2021-44886

Description

In Zammad 5.0.2, agents can configure "out of office" periods and substitute persons. If the substitute persons didn't have the same permissions as the original agent, they could receive ticket notifications for tickets that they have no access to.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zammad/Zammadcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =5.0.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.