CVE-2024-45519

Warnung

Exploit

EPSS 94.14%
Veröffentlicht 02.10.2024 22:15:02
Zuletzt bearbeitet 04.11.2025 16:45:03
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The postjournal service in Zimbra Collaboration (ZCS) before 8.8.15 Patch 46, 9 before 9.0.0 Patch 41, 10 before 10.0.9, and 10.1 before 10.1.1 sometimes allows unauthenticated users to execute commands.

Betroffene Produkte Warnungen 1 Metriken 3 CWE 1 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Synacor ≫ Zimbra Collaboration Suite Version < 8.8.15

Synacor ≫ Zimbra Collaboration Suite Version >= 10.0.0 < 10.0.9

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Update-

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep1

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep10

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep11

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep12

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep13

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep14

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep15

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep16

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep17

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep18

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep19

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep2

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep20

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep21

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep22

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep23

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep24

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep25

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep26

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep27

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep28

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep29

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep3

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep30

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep31

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep31.1

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep32

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep33

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep34

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep35

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep36

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep37

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep38

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep39

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep4

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep40

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep41

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep42

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep43

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep44

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep45

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep5

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep6

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep7

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep8

Synacor ≫ Zimbra Collaboration Suite Version8.8.15 Updatep9

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Update-

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep1

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep10

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep11

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep12

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep13

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep14

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep15

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep16

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep17

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep18

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep19

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep2

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep20

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep21

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep22

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep23

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep24

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep24.1

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep25

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep26

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep27

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep28

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep29

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep3

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep30

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep31

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep32

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep33

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep34

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep35

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep36

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep37

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep38

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep39

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep4

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep40

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep5

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep6

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep7

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep8

Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep9

Synacor ≫ Zimbra Collaboration Suite Version10.1.0

03.10.2024: CISA Known Exploited Vulnerabilities (KEV) Catalog

Synacor Zimbra Collaboration Suite (ZCS) Command Execution Vulnerability

Schwachstelle

Synacor Zimbra Collaboration Suite (ZCS) contains an unspecified vulnerability in the postjournal service that may allow an unauthenticated user to execute commands.

Beschreibung

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.14%	0.999

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cve@mitre.org	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://wiki.zimbra.com/wiki/Security_Center

Release Notes

https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy

Not Applicable

https://wiki.zimbra.com/wiki/Zimbra_Releases/10.0.9#Security_Fixes

Release Notes

https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.1#Security_Fixes

Release Notes

https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P46#Security_Fixes

Release Notes

https://wiki.zimbra.com/wiki/Zimbra_Releases/9.0.0/P41#Security_Fixes

Release Notes