Unrated severityNVD Advisory· Published Sep 27, 2022· Updated May 21, 2025
CVE-2022-40817
CVE-2022-40817
Description
Zammad 5.2.1 has a fine-grained permission model that allows to configure read-only access to tickets. However, agents were still wrongly able to perform some operations on such tickets, like adding and removing links, tags. and related answers. This issue has been fixed in 5.2.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- zammad.com/de/advisories/zaa-2022-10mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.