CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3406

Multiple cross-site request forgery (CSRF) vulnerabilities in Zimbra Collaboration before 8.7.0 allow remote attackers to hijack the authentication of unspecified victims via vectors involving (1) the Client uploader extension or (2) extension REST handlers, aka bugs 104294 and 104456.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.3%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

Products affected by CVE-2016-3406

Synacor » Zimbra Collaboration Suite » Version: 6.0.0

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.0
Synacor » Zimbra Collaboration Suite » Version: 6.0.1

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.1
Synacor » Zimbra Collaboration Suite » Version: 6.0.10

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.10
Synacor » Zimbra Collaboration Suite » Version: 6.0.12

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.12
Synacor » Zimbra Collaboration Suite » Version: 6.0.13

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.13
Synacor » Zimbra Collaboration Suite » Version: 6.0.14

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.14
Synacor » Zimbra Collaboration Suite » Version: 6.0.15

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.15
Synacor » Zimbra Collaboration Suite » Version: 6.0.16

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.16
Synacor » Zimbra Collaboration Suite » Version: 6.0.2

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.2
Synacor » Zimbra Collaboration Suite » Version: 6.0.3

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.3
Synacor » Zimbra Collaboration Suite » Version: 6.0.4

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.4
Synacor » Zimbra Collaboration Suite » Version: 6.0.5

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.5
Synacor » Zimbra Collaboration Suite » Version: 6.0.6

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.6
Synacor » Zimbra Collaboration Suite » Version: 6.0.7

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.7
Synacor » Zimbra Collaboration Suite » Version: 6.0.8

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.8
Synacor » Zimbra Collaboration Suite » Version: 6.0.9

cpe:2.3:a:synacor:zimbra_collaboration_suite:6.0.9
Synacor » Zimbra Collaboration Suite » Version: 7.2.7

cpe:2.3:a:synacor:zimbra_collaboration_suite:7.2.7
Synacor » Zimbra Collaboration Suite » Version: 8.0.0

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.0
Synacor » Zimbra Collaboration Suite » Version: 8.0.1

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.1
Synacor » Zimbra Collaboration Suite » Version: 8.0.2

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.2
Synacor » Zimbra Collaboration Suite » Version: 8.0.3

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.3
Synacor » Zimbra Collaboration Suite » Version: 8.0.4

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.4
Synacor » Zimbra Collaboration Suite » Version: 8.0.5

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.5
Synacor » Zimbra Collaboration Suite » Version: 8.0.6

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.6
Synacor » Zimbra Collaboration Suite » Version: 8.0.7

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.7
Synacor » Zimbra Collaboration Suite » Version: 8.0.8

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.8
Synacor » Zimbra Collaboration Suite » Version: 8.0.9

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.0.9
Synacor » Zimbra Collaboration Suite » Version: 8.5.0

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.5.0
Synacor » Zimbra Collaboration Suite » Version: 8.5.1

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.5.1
Synacor » Zimbra Collaboration Suite » Version: 8.6.0

cpe:2.3:a:synacor:zimbra_collaboration_suite:8.6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-3406

Products

Pricing

Contact Us