CVE-2022-24682 - Synacor Zimbra Collaborate Suite (ZCS) Cross-Site Scripting Vulnerability
Project:Synacor
Product:Zimbra Collaborate Suite (ZCS)
Date Added:2022-02-25Due Date:2022-03-11
Vulnerability Name
Synacor Zimbra Collaborate Suite (ZCS) Cross-Site Scripting Vulnerability
Description
Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability in the Calendar feature that allows an attacker to execute arbitrary code.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2022-24682