Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2024-33535
HistoryAug 12, 2024 - 12:00 a.m.

CVE-2024-33535

2024-08-1200:00:00
mitre
www.cve.org
2
zimbra collaboration
vulnerability
lfi
web application
authentication
unauthorized access

EPSS

0.001

Percentile

39.1%

JSON

An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The vulnerability involves unauthenticated local file inclusion (LFI) in a web application, specifically impacting the handling of the packages parameter. Attackers can exploit this flaw to include arbitrary local files without authentication, potentially leading to unauthorized access to sensitive information. The vulnerability is limited to files within a specific directory.

Related

nvd 1
vulnrichment 1
cve 1
nvd
nvd
CVE-2024-33535
2024-08-12 15:15:20
vulnrichment
vulnrichment
CVE-2024-33535
2024-08-12 00:00:00
cve
cve
CVE-2024-33535
2024-08-12 15:15:20

EPSS

0.001

Percentile

39.1%

JSON
Related for CVELIST:CVE-2024-33535
nvd1vulnrichment1cve1