Vulnerability CVE-2023-50455
Published: 2023-12-10   Modified: 2023-12-14

Description:
An issue was discovered in Zammad before 6.2.0. Due to lack of rate limiting in the "email address verification" feature, an attacker could send many requests for a known address to cause Denial Of Service (generation of many emails, which would also spam the victim).

Type:

CWE-770

Affected software
Zammad -> Zammad 

 References:
https://zammad.com/en/advisories/zaa-2023-06
Copyright 2024, cxsecurity.com

 

Back to Top