Unrated severityNVD Advisory· Published Apr 5, 2025· Updated Apr 7, 2025
CVE-2025-32357
CVE-2025-32357
Description
In Zammad 6.4.x before 6.4.2, an authenticated agent with knowledge base permissions was able to use the Zammad API to fetch knowledge base content that they have no permission for.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.