{"vulnerability": "CVE-2023-3159", "sightings": [{"uuid": "038f3d58-1056-40bf-8938-30e640001a14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31597", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2551", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31597\n\ud83d\udd39 Description: An issue in Zammad v5.4.0 allows attackers to bypass e-mail verification using an arbitrary address and manipulate the data of the generated user. Attackers are also able to gain unauthorized access to existing tickets.\n\ud83d\udccf Published: 2023-05-18T00:00:00\n\ud83d\udccf Modified: 2025-01-22T14:38:04.811Z\n\ud83d\udd17 References:\n1. https://zammad.com/de/advisories/zaa-2023-03", "creation_timestamp": "2025-01-22T15:03:12.000000Z"}, {"uuid": "a99ef0c8-9de5-495e-8161-add02b0f3e1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31597", "type": "seen", "source": "https://t.me/cibsecurity/64419", "content": "\u203c CVE-2023-31597 \u203c\n\nAn issue in Zammad v5.4.0 allows attackers to bypass e-mail verification using an arbitrary address and manipulate the data of the generated user. Attackers are also able to gain unauthorized access to existing tickets.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-18T22:32:30.000000Z"}]}