CVE-2025-32358 — MEDIUM (4.0)

Q: How severe is CVE-2025-32358?

CVE-2025-32358 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-32358?

Check the references section above for vendor advisories and patch information. Affected products include: Zammad Zammad.

Vulnerability Description

In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint returned a redirect response, Zammad would follow it automatically with another GET request. This could be abused by an attacker to cause GET requests for example in the local network.

CVSS Score

4.0

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

LOW

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Zammad	Zammad	>= 6.4.0, < 6.4.2

Related Weaknesses (CWE)

CWE-918

References

https://zammad.com/en/advisories/zaa-2025-01Vendor Advisory

FAQ

What is CVE-2025-32358?

CVE-2025-32358 is a vulnerability with a CVSS score of 4.0 (MEDIUM). In Zammad 6.4.x before 6.4.2, SSRF can occur. Authenticated admin users can enable webhooks in Zammad, which are triggered as POST requests when certain conditions are met. If a webhook endpoint retur...

How severe is CVE-2025-32358?

CVE-2025-32358 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-32358?

Check the references section above for vendor advisories and patch information. Affected products include: Zammad Zammad.