Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/03/31 4:59 a.m.4 views

CVE-2026-33373

An issue was discovered in Zimbra Collaboration ZCS 10.0 and 10.1. A Cross-Site Request Forgery CSRF vulnerability exists in Zimbra Web Client due to the issuance of authentication tokens without CSRF protection during certain account state transitions. Specifically, tokens generated after...

8.8CVSS5.9AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2026/03/30 3:16 p.m.7 views

CVE-2026-33373

An issue was discovered in Zimbra Collaboration ZCS 10.0 and 10.1. A Cross-Site Request Forgery CSRF vulnerability exists in Zimbra Web Client due to the issuance of authentication tokens without CSRF protection during certain account state transitions. Specifically, tokens generated after...

8.8CVSS0.00202EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/30 12:0 a.m.4 views

CVE-2026-33373

An issue was discovered in Zimbra Collaboration ZCS 10.0 and 10.1. A Cross-Site Request Forgery CSRF vulnerability exists in Zimbra Web Client due to the issuance of authentication tokens without CSRF protection during certain account state transitions. Specifically, tokens generated after...

5.9AI score0.00202EPSS
Exploits0References5
CVE
CVE
added 2026/03/30 12:0 a.m.17 views

CVE-2026-33373

CVE-2026-33373 affects Zimbra Collaboration (ZCS) 10.0 and 10.1. The vulnerability is a Cross-Site Request Forgery (CSRF) in the Zimbra Web Client where authentication tokens issued during certain account state transitions (e.g., enabling 2FA or changing a password) may lack CSRF protection, allo...

8.8CVSS5.9AI score0.00202EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder