CVE-2023-34193

Published: Jul 6, 2023Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

File Upload vulnerability in Zimbra ZCS 8.8.15 allows an authenticated privileged user to execute arbitrary code and obtain sensitive information via the ClientUploader function.

Affected (37)

Products: Zimbra: Collaboration

Zimbra

1 product

Collaboration

Configuration A

37 vulnerable

Vulnerable Software	Affected Versions
Zimbra Collaboration	Version 8.8.15
Zimbra Collaboration	Version 8.8.15 p10
Zimbra Collaboration	Version 8.8.15 p11
Zimbra Collaboration	Version 8.8.15 p12
Zimbra Collaboration	Version 8.8.15 p13
Zimbra Collaboration	Version 8.8.15 p14
Zimbra Collaboration	Version 8.8.15 p15
Zimbra Collaboration	Version 8.8.15 p16
Zimbra Collaboration	Version 8.8.15 p17
Zimbra Collaboration	Version 8.8.15 p18
Zimbra Collaboration	Version 8.8.15 p19
Zimbra Collaboration	Version 8.8.15 p1
Zimbra Collaboration	Version 8.8.15 p20
Zimbra Collaboration	Version 8.8.15 p21
Zimbra Collaboration	Version 8.8.15 p22
Zimbra Collaboration	Version 8.8.15 p23
Zimbra Collaboration	Version 8.8.15 p24
Zimbra Collaboration	Version 8.8.15 p25
Zimbra Collaboration	Version 8.8.15 p26
Zimbra Collaboration	Version 8.8.15 p27
Zimbra Collaboration	Version 8.8.15 p28
Zimbra Collaboration	Version 8.8.15 p29
Zimbra Collaboration	Version 8.8.15 p2
Zimbra Collaboration	Version 8.8.15 p30
Zimbra Collaboration	Version 8.8.15 p31
Zimbra Collaboration	Version 8.8.15 p32
Zimbra Collaboration	Version 8.8.15 p33
Zimbra Collaboration	Version 8.8.15 p34
Zimbra Collaboration	Version 8.8.15 p35
Zimbra Collaboration	Version 8.8.15 p37
Zimbra Collaboration	Version 8.8.15 p3
Zimbra Collaboration	Version 8.8.15 p4
Zimbra Collaboration	Version 8.8.15 p5
Zimbra Collaboration	Version 8.8.15 p6
Zimbra Collaboration	Version 8.8.15 p7
Zimbra Collaboration	Version 8.8.15 p8
Zimbra Collaboration	Version 8.8.15 p9