CVE-2022-27925

🗓️ 20 Apr 2022 23:23:25Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 1110 Views🌐 WEB

ZCS 8.8.15 and 9.0 mboximport ZIP Archive Arbitrary File Uploa

Reporter	Title	Published	Views	Family All 52
GithubExploit	Exploit for Path Traversal in Zimbra Collaboration	24 Oct 202210:10	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	20 Aug 202215:58	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	1 Oct 202210:33	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	1 Oct 202210:33	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	19 Aug 202417:17	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	25 Sep 202215:09	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	17 Sep 202222:24	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	26 Aug 202220:19	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	12 Aug 202218:35	–	githubexploit
GithubExploit	Exploit for Path Traversal in Synacor Zimbra_Collaboration_Suite	19 Aug 202204:46	–	githubexploit

NVD

Node

synacor zimbra_collaboration_suiteMatch8.8.15-

synacor zimbra_collaboration_suiteMatch8.8.15p1

synacor zimbra_collaboration_suiteMatch8.8.15p10

synacor zimbra_collaboration_suiteMatch8.8.15p11

synacor zimbra_collaboration_suiteMatch8.8.15p12

synacor zimbra_collaboration_suiteMatch8.8.15p13

synacor zimbra_collaboration_suiteMatch8.8.15p14

synacor zimbra_collaboration_suiteMatch8.8.15p15

synacor zimbra_collaboration_suiteMatch8.8.15p16

synacor zimbra_collaboration_suiteMatch8.8.15p17

synacor zimbra_collaboration_suiteMatch8.8.15p18

synacor zimbra_collaboration_suiteMatch8.8.15p19

synacor zimbra_collaboration_suiteMatch8.8.15p2

synacor zimbra_collaboration_suiteMatch8.8.15p20

synacor zimbra_collaboration_suiteMatch8.8.15p21

synacor zimbra_collaboration_suiteMatch8.8.15p22

synacor zimbra_collaboration_suiteMatch8.8.15p23

synacor zimbra_collaboration_suiteMatch8.8.15p24

synacor zimbra_collaboration_suiteMatch8.8.15p25

synacor zimbra_collaboration_suiteMatch8.8.15p26

synacor zimbra_collaboration_suiteMatch8.8.15p27

synacor zimbra_collaboration_suiteMatch8.8.15p28

synacor zimbra_collaboration_suiteMatch8.8.15p29

synacor zimbra_collaboration_suiteMatch8.8.15p3

synacor zimbra_collaboration_suiteMatch8.8.15p30

synacor zimbra_collaboration_suiteMatch8.8.15p4

synacor zimbra_collaboration_suiteMatch8.8.15p5

synacor zimbra_collaboration_suiteMatch8.8.15p6

synacor zimbra_collaboration_suiteMatch8.8.15p7

synacor zimbra_collaboration_suiteMatch8.8.15p8

synacor zimbra_collaboration_suiteMatch8.8.15p9

synacor zimbra_collaboration_suiteMatch9.0.0-

synacor zimbra_collaboration_suiteMatch9.0.0p1

synacor zimbra_collaboration_suiteMatch9.0.0p10

synacor zimbra_collaboration_suiteMatch9.0.0p11

synacor zimbra_collaboration_suiteMatch9.0.0p12

synacor zimbra_collaboration_suiteMatch9.0.0p13

synacor zimbra_collaboration_suiteMatch9.0.0p14

synacor zimbra_collaboration_suiteMatch9.0.0p15

synacor zimbra_collaboration_suiteMatch9.0.0p16

synacor zimbra_collaboration_suiteMatch9.0.0p17

synacor zimbra_collaboration_suiteMatch9.0.0p18

synacor zimbra_collaboration_suiteMatch9.0.0p19

synacor zimbra_collaboration_suiteMatch9.0.0p2

synacor zimbra_collaboration_suiteMatch9.0.0p20

synacor zimbra_collaboration_suiteMatch9.0.0p21

synacor zimbra_collaboration_suiteMatch9.0.0p22

synacor zimbra_collaboration_suiteMatch9.0.0p23

synacor zimbra_collaboration_suiteMatch9.0.0p3

synacor zimbra_collaboration_suiteMatch9.0.0p4

synacor zimbra_collaboration_suiteMatch9.0.0p5

synacor zimbra_collaboration_suiteMatch9.0.0p6

synacor zimbra_collaboration_suiteMatch9.0.0p7

synacor zimbra_collaboration_suiteMatch9.0.0p8

synacor zimbra_collaboration_suiteMatch9.0.0p9

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/168146/Zimbra-Zip-Path-Traversal.html
wiki	www.wiki.zimbra.com/wiki/Zimbra_Security_Advisories
wiki	www.wiki.zimbra.com/wiki/Security_Center
wiki	www.wiki.zimbra.com/wiki/Zimbra_Releases/9.0.0/P24
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

Parameter	Position	Path	Description	CWE
account-name	upload data	/service/extension/backup/mboximport?account-name=<TARGET_USERNAME>&ow=1&no-switch=1&append=1	ZIP path traversal vulnerability in Zimbra mboximport allowing arbitrary file extraction to deploy a JSP backdoor	CWE-22
ow	upload data	/service/extension/backup/mboximport?account-name=<TARGET_USERNAME>&ow=1&no-switch=1&append=1	ZIP path traversal vulnerability in Zimbra mboximport allowing arbitrary file extraction to deploy a JSP backdoor	CWE-22
no-switch	upload data	/service/extension/backup/mboximport?account-name=<TARGET_USERNAME>&ow=1&no-switch=1&append=1	ZIP path traversal vulnerability in Zimbra mboximport allowing arbitrary file extraction to deploy a JSP backdoor	CWE-22
append	upload data	/service/extension/backup/mboximport?account-name=<TARGET_USERNAME>&ow=1&no-switch=1&append=1	ZIP path traversal vulnerability in Zimbra mboximport allowing arbitrary file extraction to deploy a JSP backdoor	CWE-22