CVE-2019-12427

2020-01-2719:15:10

Google

osv.dev

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.8%

JSON

Zimbra Collaboration before 8.8.15 Patch 1 is vulnerable to a non-persistent XSS via the Admin Console.

CPENameOperatorVersion
zm-buildeq8.7.11
zm-buildeq8.8.15
zm-buildeq8.8.8
zm-buildeq8.8.9
zm-buildeq8.8.9.p1
zm-buildeq8.7.6
zm-buildeq8.8.11.p3
zm-buildeq8.7.10
zm-buildeq8.8.12
zm-buildeq8.7.7

Name	Operator	Version
zm-build	eq	8.7.11
zm-build	eq	8.8.15
zm-build	eq	8.8.8
zm-build	eq	8.8.9
zm-build	eq	8.8.9.p1
zm-build	eq	8.7.6
zm-build	eq	8.8.11.p3
zm-build	eq	8.7.10
zm-build	eq	8.8.12
zm-build	eq	8.7.7