Zammad · Zammad · CVE-2024-55578
**Name of the Vulnerable Software and Affected Versions**
Zammad versions prior to 6.4.1
**Description**
The issue concerns the exposure of sensitive data in log files. Sensitive data, such as `auth microsoft office365 credentials` and `application secret`, is placed in log files. This affects Zammad versions before 6.4.1.
**Recommendations**
For versions prior to 6.4.1, update to version 6.4.1 or later to resolve the issue. As a temporary workaround, consider restricting access to log files to minimize the risk of sensitive data exposure.