Unrated severityNVD Advisory· Published Aug 8, 2022· Updated Aug 3, 2024
CVE-2022-35487
CVE-2022-35487
Description
Zammad 5.2.0 suffers from Incorrect Access Control. Zammad did not correctly perform authorization on certain attachment endpoints. This could be abused by an unauthenticated attacker to gain access to attachments, such as emails or attached files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- zammad.com/de/advisories/zaa-2022-08mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.