Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2024-33536

🗓️ 12 Aug 2024 15:15:20Reported by [email protected]Type 
nvd
 nvd🔗 web.nvd.nist.gov👁 14 Views

Issue in Zimbra Collaboration, versions 9.0 and 10.0, allows authenticated attacker to execute arbitrary JavaScript code within another user's session

Related
Detection
Refs
NVD
Node
zimbracollaborationRange10.0.010.0.8
OR
zimbracollaborationMatch9.0.0-
OR
zimbracollaborationMatch9.0.0p0
OR
zimbracollaborationMatch9.0.0p1
OR
zimbracollaborationMatch9.0.0p10
OR
zimbracollaborationMatch9.0.0p11
OR
zimbracollaborationMatch9.0.0p12
OR
zimbracollaborationMatch9.0.0p13
OR
zimbracollaborationMatch9.0.0p14
OR
zimbracollaborationMatch9.0.0p15
OR
zimbracollaborationMatch9.0.0p16
OR
zimbracollaborationMatch9.0.0p19
OR
zimbracollaborationMatch9.0.0p2
OR
zimbracollaborationMatch9.0.0p20
OR
zimbracollaborationMatch9.0.0p21
OR
zimbracollaborationMatch9.0.0p23
OR
zimbracollaborationMatch9.0.0p24
OR
zimbracollaborationMatch9.0.0p24.1
OR
zimbracollaborationMatch9.0.0p25
OR
zimbracollaborationMatch9.0.0p26
OR
zimbracollaborationMatch9.0.0p27
OR
zimbracollaborationMatch9.0.0p3
OR
zimbracollaborationMatch9.0.0p30
OR
zimbracollaborationMatch9.0.0p31
OR
zimbracollaborationMatch9.0.0p32
OR
zimbracollaborationMatch9.0.0p33
OR
zimbracollaborationMatch9.0.0p34
OR
zimbracollaborationMatch9.0.0p35
OR
zimbracollaborationMatch9.0.0p36
OR
zimbracollaborationMatch9.0.0p37
OR
zimbracollaborationMatch9.0.0p38
OR
zimbracollaborationMatch9.0.0p39
OR
zimbracollaborationMatch9.0.0p4
OR
zimbracollaborationMatch9.0.0p5
OR
zimbracollaborationMatch9.0.0p6
OR
zimbracollaborationMatch9.0.0p7
OR
zimbracollaborationMatch9.0.0p7.1
OR
zimbracollaborationMatch9.0.0p8
OR
zimbracollaborationMatch9.0.0p9

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
25 Mar 2025 17:15Current
CVSS 3.15.4
EPSS0.00246
CWE-79
zimbra collaborationinput validationauthenticated attackerarbitrary javascriptbrowser sessionmalicious fileurl craftingvulnerability
14