Lucene search
CISACISA-KEV-CVE-2023-37580HistoryJul 27, 2023 - 12:00 a.m.
Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability
2023-07-2700:00:00
CISA
www.cisa.gov
52
zimbra collaboration suite
xss
vulnerability
data confidentiality
integrity
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.304
Percentile
97.0%
Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability impacting the confidentiality and integrity of data.
Related
nvd
nvd
CVE-2023-37580
2023-07-31 16:15:10
cvelist
cvelist
CVE-2023-37580
2023-07-31 00:00:00
hivepro
hivepro
Four Threat Actors Capitalized on Zimbra Zero Day to Infiltrate Government Organizations
2023-11-20 04:51:29
Zimbra Fixes A Zero-Day Vulnerability Exploited in Attacks
2023-07-31 05:57:58
thn
thn
Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups
2023-11-16 16:09:00
schneier
schneier
Email Security Flaw Found in the Wild
2023-11-21 12:05:07
wallarmlab
wallarmlab
Unpacking the Zimbra Cross-Site Scripting Vulnerability (CVE-2023-37580)
2023-11-21 15:59:17
prion
prion
Cross site scripting
2023-07-31 16:15:00
cve
cve
CVE-2023-37580
2023-07-31 16:15:10
attackerkb
attackerkb
CVE-2023-37580
2023-07-31 00:00:00
osv
osv
CVE-2023-37580
2023-07-31 16:15:10
nuclei
nuclei
Zimbra Collaboration Suite (ZCS) v.8.8.15 - Cross-Site Scripting
2023-08-01 05:26:17
nessus
nessus
Zimbra Collaboration Server 8.x < 8.8.15 Patch 41 Multiple Vulnerabilities
2023-07-28 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.304
Percentile
97.0%
Related for CISA-KEV-CVE-2023-37580