Synacor Zimbra Schwachstellen

Zeitverlauf

Vergangenes Jahr

Version

8.0	31
8.1	31
8.2	31
8.3	31
8.4	31

Massnahmen

Official Fix	77
Temporary Fix	0
Workaround	1
Unavailable	0
Not Defined	25

Ausnutzbarkeit

High	11
Functional	0
Proof-of-Concept	4
Unproven	0
Not Defined	88

Zugriffsart

Not Defined	0
Physical	0
Local	1
Adjacent	12
Network	90

Authentisierung

Not Defined	0
High	4
Low	45
None	54

Benutzeraktivität

Not Defined	0
Required	54
None	49

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	7
≤5	25
≤6	33
≤7	19
≤8	9
≤9	9
≤10	1

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	7
≤5	32
≤6	27
≤7	20
≤8	7
≤9	9
≤10	1

VulDB

≤1	0
≤2	0
≤3	3
≤4	23
≤5	35
≤6	20
≤7	6
≤8	12
≤9	3
≤10	1

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	8
≤7	41
≤8	15
≤9	5
≤10	12

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	39
<2k	43
<5k	20
<10k	1
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	99
<2k	3
<5k	1
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (78): 1, 8.0, 8.0.9, 8.1, 8.2, 8.3, 8.4, 8.5, 8.6, 8.6 Patch 12, 8.6.0 Patch 1, 8.6.0 Patch 4, 8.6.0 Patch 6, 8.6.0 Patch 9, 8.7, 8.7.1, 8.7.2, 8.7.3, 8.7.4, 8.7.5, 8.7.6, 8.7.7, 8.7.8, 8.7.9, 8.7.11 Patch 1, 8.7.11 Patch 2, 8.7.11 Patch 3, 8.7.11 Patch 5, 8.7.11 Patch 6, 8.7.11 Patch 9, 8.7.11.Patch1, 8.7.11.Patch2, 8.7.11p9, 8.8, 8.8.0 Beta 1, 8.8.0 Beta1, 8.8.1, 8.8.2, 8.8.3, 8.8.4, 8.8.5, 8.8.6, 8.8.7, 8.8.8, 8.8.8 Patch 3, 8.8.8 Patch 6, 8.8.8 Patch 8, 8.8.9, 8.8.9 Patch 2, 8.8.10 Patch 1, 8.8.10 Patch 6, 8.8.11, 8.8.11 Patch 2, 8.8.11P1, 8.8.12, 8.8.13, 8.8.14, 8.8.14 Patch 41, 8.8.15, 8.8.15 P16, 8.8.15 Patch 1, 8.8.15 Patch 4, 8.8.15 Patch 6, 8.8.15 Patch 9, 8.8.15 Patch 22, 8.8.15 Patch 29, 8.8.15 Patch 42, 8.8.15.p7, 9.0, 9.0.0 P9, 9.0.0 Patch 2, 9.0.0 Patch 15, 9.0.0 Patch 33, 9.0.0 Patch 34, 9.0.0 Patch 35, 10.0.1, 10.0.2, 10.0.3

Link to Product Website: https://synacor.com/

Softwaretyp: Groupware Software

Veröffentlicht	Base	Temp	Schwachstelle	0day	Heute	Aus	Mas	CTI	CVE
07.12.2023	4.8	4.7	Synacor Zimbra Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-43103
07.12.2023	6.5	6.4	Synacor Zimbra Collaboration Suite Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-41106
07.12.2023	4.8	4.7	Synacor Zimbra Collaboration Suite Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.06	CVE-2023-43102
31.07.2023	4.8	4.7	Synacor Zimbra Collaboration Suite Classic Web Client Cross Site Scripting	$0-$5k	$0-$5k	High	Official Fix	0.03	CVE-2023-37580
31.07.2023	5.5	5.4	Synacor Zimbra Collaboration Suite JSP File Information Disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-38750
06.07.2023	6.2	6.2	Synacor Zimbra Collaboration autoSaveDraft Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-34192
06.07.2023	7.6	7.6	Synacor Zimbra Collaboration sfdc_preauth.jsp Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2023-29382
06.07.2023	6.1	6.1	Synacor Zimbra Collaboration File Upload ClientUploader Information Disclosure	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2023-34193
06.07.2023	7.0	7.0	Synacor Zimbra Collaboration Information Disclosure	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-29381
16.06.2023	7.8	7.8	Synacor Zimbra Collaboration erweiterte Rechte	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2023-24032
16.06.2023	4.8	4.8	Synacor Zimbra Collaboration Webmail Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-24031
16.06.2023	4.3	4.3	Synacor Zimbra Collaboration preauth Redirect	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-24030
07.01.2023	4.8	4.8	Synacor Zimbra Collaboration Suite Webmail URL Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2022-45913
07.01.2023	5.2	5.2	Synacor Zimbra Collaboration Suite Classic UI Login Page Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.07	CVE-2022-45911
06.12.2022	4.7	4.6	Synacor Zimbra Collaboration Suite ClientUploader erweiterte Rechte	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-45912
18.10.2022	8.3	8.3	Synacor Zimbra Collaboration Suite Postfix Privilege Escalation	$0-$5k	$0-$5k	High	Official Fix	0.02	CVE-2022-3569
13.10.2022	4.8	4.8	Synacor Zimbra Collaboration Suite calendar Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-41351
13.10.2022	4.8	4.8	Synacor Zimbra Collaboration Suite Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-41350
13.10.2022	4.8	4.8	Synacor Zimbra Collaboration Suite IMG Element Information Disclosure	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-41348
26.09.2022	8.3	8.3	Synacor Zimbra Collaboration Suite Nginx erweiterte Rechte	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-41347
26.09.2022	7.6	7.6	Synacor Zimbra Collaboration Suite amavisd public erweiterte Rechte	$0-$5k	$0-$5k	High	Not Defined	0.00	CVE-2022-41352
17.08.2022	8.3	8.3	Synacor Zimbra Collaboration Suite sudo Configuration zmslapd erweiterte Rechte	$0-$5k	$0-$5k	High	Official Fix	0.04	CVE-2022-37393
12.08.2022	3.5	3.5	Synacor Zimbra Collaboration Suite Cross Site Scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.05	CVE-2022-37044
12.08.2022	6.3	6.3	Synacor Zimbra Collaboration Suite Header ProxyServlet.java erweiterte Rechte	$0-$5k	$0-$5k	Not Defined	Not Defined	0.08	CVE-2022-37041
12.08.2022	4.3	4.3	Synacor Zimbra Collaboration Suite Cross Site Request Forgery	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2022-37043

Synacor Zimbra Schwachstellen

Zeitverlauf

Vergangenes Jahr

Version

Massnahmen

Ausnutzbarkeit

Zugriffsart

Authentisierung

Benutzeraktivität

C3BM Index

Vergangenes Jahr

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Hersteller

Research

Exploit 0-day

Exploit heute

Exploitmarktvolumen

Vergangenes Jahr

🔴 CTI Aktivitäten

🔒 Login Required

Do you know our Splunk app?