CVE-2021-42086

Click the icon to Follow me:- twitterTelegramRedditDiscord

Summary:

An issue was discovered in Zammad before 4.1.1. An Agent account can modify account data, and gain admin access, via a crafted request.

Reference Links(if available):

  • https://zammad.com/en/advisories/zaa-2021-09
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Available for Amazon Prime