CVE-2025-32358

Medium CVSS: 4.0

In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This could be abused by an attacker to cause GET requests for example in the local network.

Vendor

Zammad

Product

Zammad

CWE

CWE-918

Yayın Tarihi

2025-04-05 21:15:40

Güncelleme

2025-04-15 16:36:06

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-918 Zammad MEDIUM Zammad 2025

Referanslar

https://zammad.com/en/advisories/zaa-2025-01

Benzer Kayıtlar

Medium

CVE-2025-32359

In Zammad 6.4.x before 6.4.2, there is client-side enforcement of server-side security. When changing their two factor a…

Medium

CVE-2025-32360

In Zammad 6.4.x before 6.4.2, there is information exposure. Only agents should be able to see and work on shared articl…

Medium

CVE-2025-32357

In Zammad 6.4.x before 6.4.2, an authenticated agent with knowledge base permissions was able to use the Zammad API to f…