Primary

Context

Zammad Origin Validation Vulnerability in SSO Mechanism Allowing Untrusted Header Processing

Vulnerability

Patched

A vulnerability exists in Zammad, a web-based open-source helpdesk and customer support system, in versions prior to 7.0.1 and 6.5.4. The issue arises because the Single Sign-On (SSO) mechanism did not properly verify whether the header came from a trusted SSO proxy or gateway before taking further action. This flaw has been addressed in versions 7.0.1 and 6.5.4.

Impact

The vulnerability allows for improper validation of SSO headers, which could lead to unauthorized actions being performed based on unverified SSO information.

Remediation

Users can update to Zammad versions 7.0.1 or 6.5.4 to address this vulnerability.

Added: Apr 8, 2026, 8:17 PM

Updated: Apr 8, 2026, 8:17 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

5.0

exploitability

6.8

remediation

7.7

relevance

5.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

5.0

exploitability

6.8

remediation

7.7

relevance

5.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Zammad Origin Validation Vulnerability in SSO Mechanism Allowing Untrusted Header Processing

Vulnerability

Impact

Remediation

Affected Products

Zammad

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating