Lucene search

[email protected]NVD:CVE-2022-37393

HistoryAug 16, 2022 - 8:15 p.m.

CVE-2022-37393

2022-08-1620:15:07

CWE-284

[email protected]

web.nvd.nist.gov

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

45.3%

JSON

Zimbra’s sudo configuration permits the zimbra user to execute the zmslapd binary as root with arbitrary parameters. As part of its intended functionality, zmslapd can load a user-defined configuration file, which includes plugins in the form of .so files, which also execute as root.

Affected configurations

NVD

Node

zimbracollaborationMatch8.7.6

zimbracollaborationMatch8.7.7

zimbracollaborationMatch8.7.9

zimbracollaborationMatch8.7.10

zimbracollaborationMatch8.7.11-

zimbracollaborationMatch8.7.11p1

zimbracollaborationMatch8.7.11p10

zimbracollaborationMatch8.7.11p11

zimbracollaborationMatch8.7.11p12

zimbracollaborationMatch8.7.11p13

zimbracollaborationMatch8.7.11p14

zimbracollaborationMatch8.7.11p15

zimbracollaborationMatch8.7.11p2

zimbracollaborationMatch8.7.11p3

zimbracollaborationMatch8.7.11p4

zimbracollaborationMatch8.7.11p5

zimbracollaborationMatch8.7.11p6

zimbracollaborationMatch8.7.11p7

zimbracollaborationMatch8.7.11p8

zimbracollaborationMatch8.7.11p9

zimbracollaborationMatch8.8.0beta1

zimbracollaborationMatch8.8.2

zimbracollaborationMatch8.8.3

zimbracollaborationMatch8.8.4

zimbracollaborationMatch8.8.6

zimbracollaborationMatch8.8.7

zimbracollaborationMatch8.8.8-

zimbracollaborationMatch8.8.8p1

zimbracollaborationMatch8.8.8p3

zimbracollaborationMatch8.8.8p4

zimbracollaborationMatch8.8.8p7

zimbracollaborationMatch8.8.9-

zimbracollaborationMatch8.8.9p1

zimbracollaborationMatch8.8.9p10

zimbracollaborationMatch8.8.9p3

zimbracollaborationMatch8.8.10-

zimbracollaborationMatch8.8.10p8

zimbracollaborationMatch8.8.11-

zimbracollaborationMatch8.8.11p3

zimbracollaborationMatch8.8.11p4

zimbracollaborationMatch8.8.11p5

zimbracollaborationMatch8.8.12-

zimbracollaborationMatch8.8.12p3

zimbracollaborationMatch8.8.12p4

zimbracollaborationMatch8.8.15-

zimbracollaborationMatch8.8.15p11

zimbracollaborationMatch8.8.15p26

zimbracollaborationMatch8.8.15p3

zimbracollaborationMatch8.8.15p30

zimbracollaborationMatch8.8.15p31

zimbracollaborationMatch8.8.15p32

zimbracollaborationMatch8.8.15p33

zimbracollaborationMatch8.8.15p34

zimbracollaborationMatch8.8.15p5

zimbracollaborationMatch9.0.0p0

zimbracollaborationMatch9.0.0p19

zimbracollaborationMatch9.0.0p23

zimbracollaborationMatch9.0.0p25

zimbracollaborationMatch9.0.0p26

zimbracollaborationMatch9.0.0p27

zimbracollaborationMatch9.0.0p4

zimbracollaborationMatch9.0.0p7

zimbracollaborationMatch9.0.0p7.1

References

attackerkb.com/topics/92AeLOE1M1/cve-2022-37393/rapid7-analysis

darrenmartyn.ie/2021/10/27/zimbra-zmslapd-local-root-exploit/

github.com/rapid7/metasploit-framework/pull/16807

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

45.3%

JSON

Related for NVD:CVE-2022-37393

metasploit1 packetstorm1 cvelist1 osv1 zdt1 cve1 prion1 nessus2 attackerkb3 rapid7blog4