Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2022/08/31 12:0 a.m.9 views

The vulnerability of the Calendar component in the Zimbra Collaboration Suite corporate email management system allows a hacker to insert any desired malicious code into documents.

The vulnerability of the Calendar component in the Zimbra Collaboration Suite enterprise email management system exists due to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to insert arbitrary code into documents...

6.1CVSS7.2AI score0.3106EPSS
Exploits2References9
Vulnrichment
Vulnrichment
added 2022/02/09 3:19 a.m.16 views

CVE-2022-24682

An issue was discovered in the Calendar feature in Zimbra Collaboration Suite 8.8.x before 8.8.15 patch 30 update 1, as exploited in the wild starting in December 2021. An attacker could place HTML containing executable JavaScript inside element attributes. This markup becomes unescaped, causing...

6.2AI score0.3106EPSS
Exploits2References5
Cvelist
Cvelist
added 2022/02/09 3:19 a.m.27 views

CVE-2022-24682

An issue was discovered in the Calendar feature in Zimbra Collaboration Suite 8.8.x before 8.8.15 patch 30 update 1, as exploited in the wild starting in December 2021. An attacker could place HTML containing executable JavaScript inside element attributes. This markup becomes unescaped, causing...

6.3AI score0.3106EPSS
Exploits2References5
Positive Technologies
Positive Technologies
added 2022/02/09 12:0 a.m.5 views

PT-2022-4547

Name of the Vulnerable Software and Affected Versions Zimbra Collaboration Suite versions 8.8.x through 8.8.15 patch 29 Description An issue was discovered in the Calendar feature, allowing an attacker to place HTML containing executable JavaScript inside element attributes. This markup becomes...

6.1CVSS7.1AI score0.3106EPSS
Exploits2References23
VulnCheck KEV
VulnCheck KEV
added 2021/12/16 12:0 a.m.5 views

VulnCheck KEV: CVE-2022-24682

Synacor Zimbra Collaboration Suite ZCS contains a cross-site scripting XSS vulnerability in the Calendar feature that allows an attacker to execute arbitrary code...

6.1CVSS7AI score0.3106EPSS
Exploits2References1
Rows per page
Query Builder