Vulnerability CVE-2022-29701
Published: 2022-04-27

Description:
A lack of rate limiting in the 'forgot password' feature of Zammad v5.1.0 allows attackers to send an excessive amount of reset requests for a legitimate user, leading to a possible Denial of Service (DoS) via a large amount of generated e-mail messages.

 References:
https://zammad.com/en/advisories/zaa-2022-04
Copyright 2026, cxsecurity.com

 

Back to Top