Design/Logic Flaw

2023-07-3116:15:00

PRIOn knowledge base

www.prio-n.com

zimbra

collaboration

exposed files

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.2%

JSON

In Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41, 9 before 9.0.0 Patch 34, and 10 before 10.0.2, internal JSP and XML files can be exposed.

CPENameOperatorVersion
zimbraeq9.0.0
zimbraeq9.0.0 p0
zimbraeq9.0.0 p4
zimbraeq9.0.0 p7
zimbraeq9.0.0 p7.1
zimbraeq9.0.0 p19
zimbraeq9.0.0 p23
zimbraeq9.0.0 p25
zimbraeq9.0.0 p26
zimbraeq9.0.0 p27

Name	Operator	Version
zimbra	eq	9.0.0
zimbra	eq	9.0.0 p0
zimbra	eq	9.0.0 p4
zimbra	eq	9.0.0 p7
zimbra	eq	9.0.0 p7.1
zimbra	eq	9.0.0 p19
zimbra	eq	9.0.0 p23
zimbra	eq	9.0.0 p25
zimbra	eq	9.0.0 p26
zimbra	eq	9.0.0 p27