An issue was discovered in Zammad 3.0 through 3.2. It may respond with verbose error messages that disclose internal application or infrastructure information. This information could aid attackers in successfully exploiting other vulnerabilities.
References
Link | Resource |
---|---|
https://zammad.com/news/security-advisory-zaa-2020-10 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-03-05T00:39:15
Updated: 2020-03-05T00:39:15
Reserved: 2020-03-05T00:00:00
Link: CVE-2020-10097
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-03-05T01:15:11.083
Modified: 2020-03-05T19:16:56.360
Link: CVE-2020-10097
JSON object: View
Redhat Information
No data.
CWE