VYPR
Unrated severityNVD Advisory· Published May 18, 2023· Updated Jan 22, 2025

CVE-2023-31597

CVE-2023-31597

Description

An issue in Zammad v5.4.0 allows attackers to bypass e-mail verification using an arbitrary address and manipulate the data of the generated user. Attackers are also able to gain unauthorized access to existing tickets.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zammad/Zammadcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 5.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.