CVE-2022-48023
Description
Insufficient privilege verification in Zammad v5.3.0 allows an authenticated attacker to perform changes on the tags of their customer tickets using the Zammad API. This is now corrected in v5.3.1 so that only agents with write permissions may change ticket tags.
Related CPE's
Could not find any relations
CvssV3 impact
Could not find any metrics
CvssV2 impact
Could not find any metrics