Synacor Schwachstellen

Zeitverlauf

Typ

Groupware Software	103

Produkt

Synacor Zimbra Collaboration	61
Synacor Zimbra Collaboration Suite	36
Synacor Zimbra	5
Synacor Zimbra Web Client	1
Synacor Zimbra Mail Client	1

Massnahmen

Official Fix	77
Temporary Fix	0
Workaround	1
Unavailable	0
Not Defined	25

Ausnutzbarkeit

High	4
Functional	0
Proof-of-Concept	4
Unproven	0
Not Defined	95

Zugriffsart

Not Defined	0
Physical	0
Local	1
Adjacent	12
Network	90

Authentisierung

Not Defined	0
High	4
Low	45
None	54

Benutzeraktivität

Not Defined	0
Required	54
None	49

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	7
≤5	25
≤6	33
≤7	19
≤8	9
≤9	9
≤10	1

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	7
≤5	32
≤6	27
≤7	20
≤8	7
≤9	9
≤10	1

VulDB

≤1	0
≤2	0
≤3	3
≤4	23
≤5	35
≤6	20
≤7	6
≤8	12
≤9	3
≤10	1

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	8
≤7	41
≤8	15
≤9	5
≤10	12

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	40
<2k	41
<5k	21
<10k	1
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	101
<2k	1
<5k	1
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (5): Zimbra (5), Zimbra Collaboration (61), Zimbra Collaboration Suite (36), Zimbra Mail Client (1), Zimbra Web Client (1)

Link to Vendor Website: https://synacor.com/

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
07.12.2023	4.8	4.7	Synacor Zimbra Cross Site Scripting	Groupware Software	Not Defined	Official Fix	0.00046	0.02	CVE-2023-43103
07.12.2023	6.5	6.4	Synacor Zimbra Collaboration Suite Privilege Escalation	Groupware Software	Not Defined	Official Fix	0.00067	0.02	CVE-2023-41106
07.12.2023	4.8	4.7	Synacor Zimbra Collaboration Suite Cross Site Scripting	Groupware Software	Not Defined	Official Fix	0.00046	0.00	CVE-2023-43102
31.07.2023	4.8	4.7	Synacor Zimbra Collaboration Suite Classic Web Client Cross Site Scripting	Groupware Software	Not Defined	Official Fix	0.30373	0.00	CVE-2023-37580
31.07.2023	5.5	5.4	Synacor Zimbra Collaboration Suite JSP File Information Disclosure	Groupware Software	Not Defined	Official Fix	0.00087	0.03	CVE-2023-38750
06.07.2023	6.2	6.2	Synacor Zimbra Collaboration autoSaveDraft Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.46424	0.00	CVE-2023-34192
06.07.2023	7.6	7.6	Synacor Zimbra Collaboration sfdc_preauth.jsp Privilege Escalation	Groupware Software	Not Defined	Not Defined	0.00134	0.03	CVE-2023-29382
06.07.2023	6.1	6.1	Synacor Zimbra Collaboration File Upload ClientUploader Information Disclosure	Groupware Software	Not Defined	Not Defined	0.00124	0.04	CVE-2023-34193
06.07.2023	7.0	7.0	Synacor Zimbra Collaboration Information Disclosure	Groupware Software	Not Defined	Not Defined	0.00119	0.00	CVE-2023-29381
16.06.2023	7.8	7.8	Synacor Zimbra Collaboration erweiterte Rechte	Groupware Software	Not Defined	Not Defined	0.00042	0.03	CVE-2023-24032
16.06.2023	4.8	4.8	Synacor Zimbra Collaboration Webmail Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.00046	0.00	CVE-2023-24031
16.06.2023	4.3	4.3	Synacor Zimbra Collaboration preauth Redirect	Groupware Software	Not Defined	Not Defined	0.00046	0.00	CVE-2023-24030
07.01.2023	4.8	4.8	Synacor Zimbra Collaboration Suite Webmail URL Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.00068	0.04	CVE-2022-45913
07.01.2023	5.2	5.2	Synacor Zimbra Collaboration Suite Classic UI Login Page Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.00068	0.07	CVE-2022-45911
06.12.2022	4.7	4.6	Synacor Zimbra Collaboration Suite ClientUploader erweiterte Rechte	Groupware Software	Not Defined	Not Defined	0.00203	0.00	CVE-2022-45912
18.10.2022	8.3	8.3	Synacor Zimbra Collaboration Suite Postfix Privilege Escalation	Groupware Software	High	Official Fix	0.00171	0.02	CVE-2022-3569
13.10.2022	4.8	4.8	Synacor Zimbra Collaboration Suite calendar Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.00075	0.00	CVE-2022-41351
13.10.2022	4.8	4.8	Synacor Zimbra Collaboration Suite Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.00075	0.00	CVE-2022-41350
13.10.2022	4.8	4.8	Synacor Zimbra Collaboration Suite IMG Element Information Disclosure	Groupware Software	Not Defined	Not Defined	0.00075	0.00	CVE-2022-41348
26.09.2022	8.3	8.3	Synacor Zimbra Collaboration Suite Nginx erweiterte Rechte	Groupware Software	Not Defined	Not Defined	0.00048	0.00	CVE-2022-41347
26.09.2022	7.6	7.6	Synacor Zimbra Collaboration Suite amavisd public erweiterte Rechte	Groupware Software	Not Defined	Not Defined	0.95669	0.03	CVE-2022-41352
17.08.2022	8.3	8.3	Synacor Zimbra Collaboration Suite sudo Configuration zmslapd erweiterte Rechte	Groupware Software	High	Official Fix	0.00114	0.04	CVE-2022-37393
12.08.2022	3.5	3.5	Synacor Zimbra Collaboration Suite Cross Site Scripting	Groupware Software	Not Defined	Not Defined	0.00078	0.00	CVE-2022-37044
12.08.2022	6.3	6.3	Synacor Zimbra Collaboration Suite Header ProxyServlet.java erweiterte Rechte	Groupware Software	Not Defined	Not Defined	0.00079	0.08	CVE-2022-37041
12.08.2022	4.3	4.3	Synacor Zimbra Collaboration Suite Cross Site Request Forgery	Groupware Software	Not Defined	Not Defined	0.00046	0.03	CVE-2022-37043

78 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 78 results.

◂ ZurückÜbersichtWeiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!