CVE-2022-27331

Publication date

2022-04-27 02:47:09

Family

mitre

State

PUBLISHED

Description

An access control issue in Zammad v5.0.3 broadcasts administrative configuration changes to all users who have an active application instance, including settings that should only be visible to authenticated users.