EPSS
Percentile
47.0%
In Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41, 9 before 9.0.0 Patch 34, and 10 before 10.0.2, internal JSP and XML files can be exposed.
wiki.zimbra.com/wiki/Security_Center
wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy