Vulnerabilities (CVE)

Filtered by vendor Zimbra Subscribe
Filtered by product Collaboration Server
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-9621 1 Zimbra 1 Collaboration Server 2024-11-21 5.0 MEDIUM 7.5 HIGH
Zimbra Collaboration Suite before 8.6 patch 13, 8.7.x before 8.7.11 patch 10, and 8.8.x before 8.8.10 patch 7 or 8.8.x before 8.8.11 patch 3 allows SSRF via the ProxyServlet component.
CVE-2019-8947 1 Zimbra 1 Collaboration Server 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Zimbra Collaboration 8.7.x - 8.8.11P2 contains non-persistent XSS.
CVE-2019-8946 1 Zimbra 1 Collaboration Server 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.
CVE-2019-8945 1 Zimbra 1 Collaboration Server 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Zimbra Collaboration 8.7.x - 8.8.11P2 contains persistent XSS.
CVE-2019-15313 1 Zimbra 1 Collaboration Server 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
In Zimbra Collaboration before 8.8.15 Patch 1, there is a non-persistent XSS vulnerability.
CVE-2019-12427 1 Zimbra 1 Collaboration Server 2024-11-21 3.5 LOW 4.8 MEDIUM
Zimbra Collaboration before 8.8.15 Patch 1 is vulnerable to a non-persistent XSS via the Admin Console.
CVE-2013-7217 1 Zimbra 1 Collaboration Server 2024-11-21 10.0 HIGH N/A
Unspecified vulnerability in Zimbra Collaboration Server 7.2.5 and earlier, and 8.0.x through 8.0.5, has "critical" impact and unspecified vectors, a different vulnerability than CVE-2013-7091.