Synacor Zimbra Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

8.031
8.131
8.231
8.331
8.431

Contromisure

Official Fix77
Temporary Fix0
Workaround1
Unavailable0
Not Defined25

Sfruttabilità

High11
Functional0
Proof-of-Concept4
Unproven0
Not Defined88

Accesso al vettore

Not Defined0
Physical0
Local1
Adjacent12
Network90

Autenticazione

Not Defined0
High4
Low45
None54

Interazione dell'utente

Not Defined0
Required54
None49

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤47
≤525
≤633
≤719
≤89
≤99
≤101

CVSSv3 Temp

≤10
≤20
≤30
≤47
≤532
≤627
≤720
≤87
≤99
≤101

VulDB

≤10
≤20
≤33
≤423
≤535
≤620
≤76
≤812
≤93
≤101

NVD

≤10
≤20
≤30
≤40
≤52
≤68
≤741
≤815
≤95
≤1012

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k39
<2k43
<5k20
<10k1
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k99
<2k3
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (78): 1, 8.0, 8.0.9, 8.1, 8.2, 8.3, 8.4, 8.5, 8.6, 8.6 Patch 12, 8.6.0 Patch 1, 8.6.0 Patch 4, 8.6.0 Patch 6, 8.6.0 Patch 9, 8.7, 8.7.1, 8.7.2, 8.7.3, 8.7.4, 8.7.5, 8.7.6, 8.7.7, 8.7.8, 8.7.9, 8.7.11 Patch 1, 8.7.11 Patch 2, 8.7.11 Patch 3, 8.7.11 Patch 5, 8.7.11 Patch 6, 8.7.11 Patch 9, 8.7.11.Patch1, 8.7.11.Patch2, 8.7.11p9, 8.8, 8.8.0 Beta 1, 8.8.0 Beta1, 8.8.1, 8.8.2, 8.8.3, 8.8.4, 8.8.5, 8.8.6, 8.8.7, 8.8.8, 8.8.8 Patch 3, 8.8.8 Patch 6, 8.8.8 Patch 8, 8.8.9, 8.8.9 Patch 2, 8.8.10 Patch 1, 8.8.10 Patch 6, 8.8.11, 8.8.11 Patch 2, 8.8.11P1, 8.8.12, 8.8.13, 8.8.14, 8.8.14 Patch 41, 8.8.15, 8.8.15 P16, 8.8.15 Patch 1, 8.8.15 Patch 4, 8.8.15 Patch 6, 8.8.15 Patch 9, 8.8.15 Patch 22, 8.8.15 Patch 29, 8.8.15 Patch 42, 8.8.15.p7, 9.0, 9.0.0 P9, 9.0.0 Patch 2, 9.0.0 Patch 15, 9.0.0 Patch 33, 9.0.0 Patch 34, 9.0.0 Patch 35, 10.0.1, 10.0.2, 10.0.3

Link to Product Website: https://synacor.com/

Tipo di software: Groupware Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
07/12/20234.84.7Synacor Zimbra cross site scripting$0-$5kCalcoloNot DefinedOfficial Fix0.02CVE-2023-43103
07/12/20236.56.4Synacor Zimbra Collaboration Suite Privilege Escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-41106
07/12/20234.84.7Synacor Zimbra Collaboration Suite cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2023-43102
31/07/20234.84.7Synacor Zimbra Collaboration Suite Classic Web Client cross site scripting$0-$5k$0-$5kHighOfficial Fix0.00CVE-2023-37580
31/07/20235.55.4Synacor Zimbra Collaboration Suite JSP File rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-38750
06/07/20236.26.2Synacor Zimbra Collaboration autoSaveDraft cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-34192
06/07/20237.67.6Synacor Zimbra Collaboration sfdc_preauth.jsp Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-29382
06/07/20236.16.1Synacor Zimbra Collaboration File Upload ClientUploader rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-34193
06/07/20237.07.0Synacor Zimbra Collaboration rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29381
16/06/20237.87.8Synacor Zimbra Collaboration escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-24032
16/06/20234.84.8Synacor Zimbra Collaboration Webmail cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-24031
16/06/20234.34.3Synacor Zimbra Collaboration preauth Redirect$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-24030
07/01/20234.84.8Synacor Zimbra Collaboration Suite Webmail URL cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2022-45913
07/01/20235.25.2Synacor Zimbra Collaboration Suite Classic UI Login Page cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2022-45911
06/12/20224.74.6Synacor Zimbra Collaboration Suite ClientUploader escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-45912
18/10/20228.38.3Synacor Zimbra Collaboration Suite Postfix Privilege Escalation$0-$5k$0-$5kHighOfficial Fix0.02CVE-2022-3569
13/10/20224.84.8Synacor Zimbra Collaboration Suite calendar cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-41351
13/10/20224.84.8Synacor Zimbra Collaboration Suite cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-41350
13/10/20224.84.8Synacor Zimbra Collaboration Suite IMG Element rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-41348
26/09/20228.38.3Synacor Zimbra Collaboration Suite Nginx escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-41347
26/09/20227.67.6Synacor Zimbra Collaboration Suite amavisd public escalazione di privilegi$0-$5k$0-$5kHighNot Defined0.05CVE-2022-41352
17/08/20228.38.3Synacor Zimbra Collaboration Suite sudo Configuration zmslapd escalazione di privilegi$0-$5k$0-$5kHighOfficial Fix0.04CVE-2022-37393
12/08/20223.53.5Synacor Zimbra Collaboration Suite cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2022-37044
12/08/20226.36.3Synacor Zimbra Collaboration Suite Header ProxyServlet.java escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.08CVE-2022-37041
12/08/20224.34.3Synacor Zimbra Collaboration Suite cross site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2022-37043

78 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 78 results.

altre voci di Synacor

PrecedenteVisione D'insiemeIl prossimo

Interested in the pricing of exploits?

See the underground prices here!