CVE-2024-36078

In Zammad before 6.3.1, a Ruby gem bundled by Zammad is installed with world-writable file permissions. This allowed a local attacker on the server to modify the gem's files, injecting arbitrary code into Zammad processes (which run with the environment and permissions of the Zammad user).

CVSS v3 6.7 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://zammad.com/en/advisories/zaa-2024-04
https://zammad.com/en/advisories/zaa-2024-04

Configurations

No configuration.

History

21 Nov 2024, 09:21

Type	Values Removed	Values Added
References	~~() https://zammad.com/en/advisories/zaa-2024-04 -~~	() https://zammad.com/en/advisories/zaa-2024-04 -

03 Jul 2024, 02:02

Type	Values Removed	Values Added
Summary		(es) En Zammad anterior a 6.3.1, se instala una gema Ruby incluida en Zammad con permisos de archivos de escritura mundial. Esto permitió a un atacante local en el servidor modificar los archivos de la gema, inyectando código arbitrario en los procesos de Zammad (que se ejecutan con el entorno y los permisos del usuario de Zammad).
CWE		CWE-94
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.7

19 May 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-19 20:15

Updated : 2024-11-21 09:21

NVD link : CVE-2024-36078

Mitre link : CVE-2024-36078

CVE.ORG link : CVE-2024-36078

JSON object : View

Products Affected

No product.

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

6.7 /10