Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2022-41352

An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.815
EPSS Ranking 99.1%
CVSS Severity
CVSS v3 Score 9.8
Proposed Action
Synacor Zimbra Collaboration Suite (ZCS) allows an attacker to upload arbitrary files using cpio package to gain incorrect access to any other user accounts.
Ransomware Campaign
Unknown
Products affected by CVE-2022-41352


Contact Us

Shodan ® - All rights reserved