exploitDog

CVE-2015-7609

Опубликовано: 30 мая 2019

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

Synacor Zimbra Mail Client 8.6 before 8.6.0 Patch 5 has XSS via the error/warning dialog and email body content in Zimbra.

Ссылки

https://bugzilla.zimbra.com/show_bug.cgi?id=101435
Exploit
Issue Tracking
Third Party Advisory
https://bugzilla.zimbra.com/show_bug.cgi?id=101436
Issue Tracking
Third Party Advisory
https://wiki.zimbra.com/wiki/Security_Center
Vendor Advisory
https://www.fortiguard.com/zeroday/FG-VD-15-080
Third Party Advisory
https://www.fortiguard.com/zeroday/FG-VD-15-081
Third Party Advisory
https://bugzilla.zimbra.com/show_bug.cgi?id=101435
Exploit
Issue Tracking
Third Party Advisory
https://bugzilla.zimbra.com/show_bug.cgi?id=101436
Issue Tracking
Third Party Advisory
https://wiki.zimbra.com/wiki/Security_Center
Vendor Advisory
https://www.fortiguard.com/zeroday/FG-VD-15-080
Third Party Advisory
https://www.fortiguard.com/zeroday/FG-VD-15-081
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.6.0:-:*:*:*:*:*:*

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.6.0:p1:*:*:*:*:*:*

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.6.0:p2:*:*:*:*:*:*

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.6.0:p3:*:*:*:*:*:*

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.6.0:p4:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00459

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-hv9g-g3q5-65c8

CVSS3: 6.1

github

больше 3 лет назад

Synacor Zimbra Mail Client 8.6 before 8.6.0 Patch 5 has XSS via the error/warning dialog and email body content in Zimbra.

EPSS

Процентиль: 63%

0.00459

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79