An issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1. Attackers can login with the hashed password itself (e.g., from the DB) instead of the valid password string.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-05T15:04:15.412Z
Reserved: 2017-01-29T00:00:00
Link: CVE-2017-5619

No data.

Status : Modified
Published: 2017-03-13T06:59:00.293
Modified: 2024-11-21T03:28:01.567
Link: CVE-2017-5619

No data.