CVE-2025-32358 MEDIUM

CVE-2025-32358

Vendor Zammad
Product Zammad
Weakness CWE-918 · SSRF
Published April 5, 2025
Last update April 7, 2025

CVSS base score

4.0/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

What the vulnerability does

01Description

In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This could be abused by an attacker to cause GET requests for example in the local network.

Key dates

02Disclosure timeline

April 5, 2025 CVE published
April 7, 2025 Record updated