Lucene search
GoogleOSV:CVE-2023-37580HistoryJul 31, 2023 - 4:15 p.m.
CVE-2023-37580
2023-07-3116:15:10
Google
osv.dev
11
zimbra
collaboration
xss
vulnerability
web client
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0.304
Percentile
97.0%
Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41 allows XSS in the Zimbra Classic Web Client.
Related
nvd
nvd
CVE-2023-37580
2023-07-31 16:15:10
cvelist
cvelist
CVE-2023-37580
2023-07-31 00:00:00
hivepro
hivepro
Four Threat Actors Capitalized on Zimbra Zero Day to Infiltrate Government Organizations
2023-11-20 04:51:29
Zimbra Fixes A Zero-Day Vulnerability Exploited in Attacks
2023-07-31 05:57:58
thn
thn
Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups
2023-11-16 16:09:00
schneier
schneier
Email Security Flaw Found in the Wild
2023-11-21 12:05:07
wallarmlab
wallarmlab
Unpacking the Zimbra Cross-Site Scripting Vulnerability (CVE-2023-37580)
2023-11-21 15:59:17
prion
prion
Cross site scripting
2023-07-31 16:15:00
cisa_kev
cisa_kev
Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability
2023-07-27 00:00:00
cve
cve
CVE-2023-37580
2023-07-31 16:15:10
attackerkb
attackerkb
CVE-2023-37580
2023-07-31 00:00:00
nuclei
nuclei
Zimbra Collaboration Suite (ZCS) v.8.8.15 - Cross-Site Scripting
2023-08-01 05:26:17
nessus
nessus
Zimbra Collaboration Server 8.x < 8.8.15 Patch 41 Multiple Vulnerabilities
2023-07-28 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0.304
Percentile
97.0%
Related for OSV:CVE-2023-37580