CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Nov 10, 2022
High
CISA KEVCVE-2022-41352
Synacor—Zimbra Collaboration Suite (ZCS)
Synacor Zimbra Collaboration Suite (ZCS) allows an attacker to upload arbitrary files using cpio package to gain incorrect access to any other user accounts.
Required Action
https://wiki.zimbra.com/wiki/Security_Center; https://nvd.nist.gov/vuln/detail/CVE-2022-41352
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Unknown
- Published
- Oct 20, 2022
- KEV Added
- Oct 20, 2022
- Due Date
- Nov 10, 2022
- Related Articles
- 0
Vendor
Synacor
Zimbra Collaboration Suite (ZCS)