← Back

CVE-2020-8633

nvd nist
Published: Feb 18, 2020Modified: Nov 21, 2024

JSON object

Loading...
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD

Description

An issue was discovered in Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7. When grantors revoked a shared calendar in Outlook, the calendar stayed mounted and accessible.

Affected (8)

Synacor
1 product
Zimbra Collaboration Suite
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Synacor
Zimbra Collaboration Suite
Before 8.8.15
Zimbra Collaboration Suite
Version 8.8.15
Zimbra Collaboration Suite
Version 8.8.15 p1
Zimbra Collaboration Suite
Version 8.8.15 p2
Zimbra Collaboration Suite
Version 8.8.15 p3
Zimbra Collaboration Suite
Version 8.8.15 p4
Zimbra Collaboration Suite
Version 8.8.15 p5
Zimbra Collaboration Suite
Version 8.8.15 p6

Related CWEs

CWE-281
Improper Preservation of Permissions
The product does not preserve permissions or incorrectly preserves permissions when copying, restoring, or sharing objects, which can cause them to have less restrictive permissions than intended.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.