Lucene search
+L

5 matches found

NVD
NVD
added 2024/12/19 11:15 p.m.15 views

CVE-2024-54663

An issue was discovered in the Webmail Classic UI in Zimbra Collaboration ZCS 9.0 and 10.0 and 10.1. A Local File Inclusion LFI vulnerability exists in the /h/rest endpoint, allowing authenticated remote attackers to include and access sensitive files in the WebRoot directory. Exploitation requir...

7.5CVSS0.00602EPSS
Exploits0References2
Circl
Circl
added 2024/12/19 10:20 p.m.8 views

CVE-2024-54663

creationtimestamp| type| source ---|---|--- 2024-12-19 22:20:00+00:00| seen| https://infosec.exchange/users/cve/statuses/113681812653957542 2024-12-19 23:15:34+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldoyujoem62v 2024-12-20 00:51:24+00:00| seen|...

7.5CVSS4.8AI score0.00602EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/12/19 12:0 a.m.8 views

CVE-2024-54663

An issue was discovered in the Webmail Classic UI in Zimbra Collaboration ZCS 9.0 and 10.0 and 10.1. A Local File Inclusion LFI vulnerability exists in the /h/rest endpoint, allowing authenticated remote attackers to include and access sensitive files in the WebRoot directory. Exploitation requir...

6.7AI score0.00602EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/19 12:0 a.m.12 views

CVE-2024-54663

An issue was discovered in the Webmail Classic UI in Zimbra Collaboration ZCS 9.0 and 10.0 and 10.1. A Local File Inclusion LFI vulnerability exists in the /h/rest endpoint, allowing authenticated remote attackers to include and access sensitive files in the WebRoot directory. Exploitation requir...

0.00602EPSS
Exploits0References2
CVE
CVE
added 2024/12/19 12:0 a.m.91 views

CVE-2024-54663

The CVE-2024-54663 affects Zimbra Collaboration (ZCS) Webmail Classic UI, specifically ZCS 9.0–10.1. A Local File Inclusion (LFI) exists in the /h/rest endpoint, allowing an authenticated attacker to include and read files from the WebRoot directory by crafting a malicious request to specific fil...

7.5CVSS6.7AI score0.00602EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder