CVE-2020-26030
First published: Mon Dec 28 2020(Updated: )
An issue was discovered in Zammad before 3.4.1. There is an authentication bypass in the SSO endpoint via a crafted header, when SSO is not configured. An attacker can create a valid and authenticated session that can be used to perform any actions in the name of other users.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zammad Zammad | >=1.0.0<3.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue in Zammad?
The vulnerability ID for this issue in Zammad is CVE-2020-26030.
What is the severity of CVE-2020-26030?
The severity of CVE-2020-26030 is critical with a CVSS score of 9.8.
How does the authentication bypass in the SSO endpoint work?
The authentication bypass in the SSO endpoint occurs when a crafted header is used, bypassing the authentication process when SSO is not configured.
Which versions of Zammad are affected by CVE-2020-26030?
Zammad versions from 1.0.0 to 3.4.1 are affected by CVE-2020-26030.
How can an attacker exploit CVE-2020-26030?
An attacker can exploit CVE-2020-26030 by creating a valid and authenticated session, allowing them to perform any actions in the name of other users.
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- vendor/zammad
- canonical/zammad zammad
- version/zammad zammad/1.0.0