Unrated severityNVD Advisory· Published Feb 4, 2022· Updated Aug 4, 2024
CVE-2021-44886
CVE-2021-44886
Description
In Zammad 5.0.2, agents can configure "out of office" periods and substitute persons. If the substitute persons didn't have the same permissions as the original agent, they could receive ticket notifications for tickets that they have no access to.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- zammad.com/en/advisories/zaa-2021-21mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.