N/A

Zammad 5.2.1 has a fine-grained permission model that allows to configure read-only access to tickets. However, agents were still wrongly able to perform some operations on such tickets, like adding and removing links, tags. and related answers. This issue has been fixed in 5.2.2.

N/A

N/A

Zammad 安全漏洞

Zammad是德国Zammad公司的一套票务管理软件。 Zammad 5.2.1版本存在安全漏洞，该漏洞源于具有细粒度的权限模型，允许配置对工单的只读访问权限，但是，代理仍然能够错误地对此类工单执行某些操作，例如添加和删除链接、标签和相关答案。

N/A

N/A