Lucene search
+L

12 matches found

thn
thn
added 2026/02/18 6:52 a.m.11 views

CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added four security flaws to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows - CVE-2026-2441 CVSS score: 8.8 - A use-after-free...

9.8CVSS10AI score0.85416EPSS
Exploits22
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-5025

Malware in sbrugna...

7.5CVSS7.6AI score0.02009EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-4440

Malware in sbrugna...

6.5CVSS6.6AI score0.02099EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-4430

Malware in sbrugna...

7.5CVSS7.8AI score0.02095EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-4428

Malware in sbrugna...

7.5CVSS7.8AI score0.02348EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-48756

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.0041EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 8:7 a.m.8 views

CVE-2024-45512

An issue was discovered in webmail in Zimbra Collaboration ZCS through 10.1. An attacker can exploit this vulnerability by creating a folder in the Briefcase module with a malicious payload and sharing it with a victim. When the victim interacts with the folder share notification, the malicious...

5.4CVSS5.5AI score0.00392EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 9:52 p.m.9 views

CVE-2022-27925

Zimbra Collaboration aka ZCS 8.8.15 and 9.0 has mboximport functionality that receives a ZIP archive and extracts files from it. An authenticated user with administrator rights has the ability to upload arbitrary files to the system, leading to directory traversal...

7.2CVSS6.9AI score0.98586EPSS
Exploits14References1
redhatcve
redhatcve
added 2025/05/22 9:47 p.m.11 views

CVE-2022-45912

An issue was discovered in Zimbra Collaboration ZCS 8.8.15 and 9.0. Remote code execution can occur through ClientUploader by an authenticated admin user. An authenticated admin user can upload files through the ClientUploader utility, and traverse to any other directory for remote code execution...

7.2CVSS7.8AI score0.0114EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 12:59 a.m.14 views

CVE-2018-14013

Synacor Zimbra Collaboration Suite Collaboration before 8.8.11 has XSS in the AJAX and html web clients...

6.1CVSS6AI score0.07376EPSS
Exploits2References1
vulnrichment
vulnrichment
added 2022/09/26 1:29 a.m.6 views

CVE-2022-41347

An issue was discovered in Zimbra Collaboration ZCS 8.8.x and 9.x e.g., 8.8.15. The Sudo configuration permits the zimbra user to execute the NGINX binary as root with arbitrary parameters. As part of its intended functionality, NGINX can load a user-defined configuration file, which includes...

7.7AI score0.00401EPSS
Exploits1References4
cve
cve
added 2017/01/18 10:0 p.m.77 views

CVE-2016-3413

CVE-2016-3413 affects Zimbra Collaboration Server prior to 8.7.0. The description indicates an unspecified vulnerability that allows remote attackers to affect integrity via unknown vectors (Bug 103996). From the associated metrics, CVSS v3 base score is 7.5 (HIGH) with NETWORK attack, low attack...

7.5CVSS7.9AI score0.02095EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder