Zimbra Collaboration (aka ZCS) versions 8.8.15 and 9.0 are vulnerable to an access control error. The vulnerability stems from a network system or product that does not properly restrict access to resources from unauthorized roles. An unauthenticated attacker could exploit the vulnerability to inject arbitrary memcache commands into the target instance.
CPE | Name | Operator | Version |
---|---|---|---|
zimbra zimbra collaboration | eq | 8.8.15 | |
zimbra zimbra collaboration | eq | 9.0 |