Lucene search
K

10 matches found

GithubExploit
GithubExploit
added 2022/11/11 8:58 p.m.461 views

Exploit for Path Traversal in Zimbra Collaboration

CVE-2022-41352 Zimbra Unauthenticated RCE CVE-2022-41352...

9.8CVSS9.8AI score0.95478EPSS
Exploits7
Rapid7 Blog
Rapid7 Blog
added 2022/10/21 5:31 p.m.153 views

Metasploit Weekly Wrap-Up

Zimbra with Postfix LPE CVE-2022-3569 This week rbowes added an LPE exploit for Zimbra with Postfix. The exploit leverages a vulnerability whereby the Zimbra user can run postfix as root which in turn is capable of executing arbitrary shellscripts. This can be abused for reliable privilege...

7.5CVSS0.6AI score0.99998EPSS
Exploits47
0day.today
0day.today
added 2022/10/21 12:0 a.m.580 views

Zimbra Collaboration Suite TAR Path Traversal Exploit

This Metasploit module creates a .tar file that can be emailed to a Zimbra server to exploit CVE-2022-41352. If successful, it plants a JSP-based backdoor in the public web directory, then executes that backdoor. The core vulnerability is a path-traversal issue in the cpio command-line utility th...

9.8CVSS8AI score0.95478EPSS
Exploits8
Metasploit
Metasploit
added 2022/10/20 7:50 p.m.623 views

TAR Path Traversal in Zimbra (CVE-2022-41352)

This module creates a .tar file that can be emailed to a Zimbra server to exploit CVE-2022-41352. If successful, it plants a JSP-based backdoor in the public web directory, then executes that backdoor. The core vulnerability is a path-traversal issue in the cpio command- line utlity that can...

9.8CVSS6.7AI score0.95478EPSS
Exploits8
The Hacker News
The Hacker News
added 2022/10/17 9:50 a.m.88 views

Zimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration Suite

Zimbra has released patches to contain an actively exploited security flaw in its enterprise collaboration suite that could be leveraged to upload arbitrary files to vulnerable instances. Tracked as CVE-2022-41352 CVSS score: 9.8, the issue affects a component of the Zimbra suite called Amavis, a...

9.8CVSS1.5AI score0.95478EPSS
Exploits8
Securelist
Securelist
added 2022/10/13 8:0 a.m.152 views

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

Overview On September 10, 2022, a user reported on Zimbras official forums that their team detected a security incident originating from a fully patched instance of Zimbra. The details they provided allowed Zimbra to confirm that an unknown vulnerability allowed attackers to upload arbitrary file...

1.9CVSS0.9AI score0.95478EPSS
Exploits8
hivepro
hivepro
added 2022/10/11 7:28 a.m.61 views

Zero-Day Remote Code Execution Vulnerability in Zimbra Collaboration Suite

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary The active exploitation of an unpatched CVE-2022-41352 remote code execution RCE vulnerability found in the Zimbra Collaboration Suite ZCS. It empowers attackers to upload arbitrary files and...

4.9AI score0.95478EPSS
Exploits7
Rapid7 Blog
Rapid7 Blog
added 2022/10/06 5:13 p.m.1086 views

Exploitation of Unpatched Zero-Day Remote Code Execution Vulnerability in Zimbra Collaboration Suite (CVE-2022-41352)

Note: Zimbra release 9.0.0 P27 addressed this vulnerability on October 10, 2022. CVE-2022-41352 is an unpatched remote code execution vulnerability in Zimbra Collaboration Suite discovered in the wild due to active exploitation. The vulnerability is due to the method cpio in which Zimbra’s...

5CVSS0.1AI score0.98975EPSS
Exploits24
Circl
Circl
added 2022/09/26 7:22 a.m.18 views

CVE-2022-41352

creationtimestamp| type| source ---|---|--- 2022-09-26 07:22:09+00:00| seen| https://t.me/cibsecurity/50459 2022-10-07 12:48:28+00:00| seen| https://www.cert.at/de/warnungen/2022/10/remote-code-execution-in-zimbra-collaboration-suite-workaround-verfugbar 2022-10-08 09:52:18+00:00| exploited|...

9.8CVSS7.5AI score0.95478EPSS
Exploits7References38
Vulnrichment
Vulnrichment
added 2022/09/26 12:0 a.m.10 views

CVE-2022-41352

An issue was discovered in Zimbra Collaboration ZCS 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole extraction to /opt/zimbra/jetty/webapps/zimbra/public that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also,...

9.7AI score0.95478EPSS
Exploits7References5
Rows per page
Query Builder