CVE-2020-10104

An issue was discovered in Zammad 3.0 through 3.2. After authentication, it transmits sensitive information to the user that may be compromised and used by an attacker to gain unauthorized access. Hashed passwords are returned to the user when visiting a certain URL.
References
Link Resource
https://zammad.com/news/security-advisory-zaa-2020-04 Patch Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:zammad:zammad:*:*:*:*:*:*:*:*

Information

Published : 2020-03-05 01:15

Updated : 2020-03-05 07:07


NVD link : CVE-2020-10104

Mitre link : CVE-2020-10104

Products Affected
No products.
CWE