5.3
CVE-2025-25065
- EPSS 0.3%
- Veröffentlicht 03.02.2025 20:15:37
- Zuletzt bearbeitet 11.06.2025 21:18:20
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
SSRF vulnerability in the RSS feed parser in Zimbra Collaboration 9.0.0 before Patch 43, 10.0.x before 10.0.12, and 10.1.x before 10.1.4 allows unauthorized redirection to internal network endpoints.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch National Vulnerability Database (NVD)
Synacor ≫ Zimbra Collaboration Suite Version < 9.0.0
Synacor ≫ Zimbra Collaboration Suite Version >= 10.0.0 < 10.0.12
Synacor ≫ Zimbra Collaboration Suite Version >= 10.1.0 < 10.1.4
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Update-
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep1
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep10
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep11
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep12
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep13
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep14
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep15
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep16
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep17
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep18
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep19
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep2
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep20
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep21
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep22
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep23
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep24
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep24.1
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep25
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep26
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep27
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep28
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep29
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep3
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep30
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep31
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep32
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep33
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep34
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep35
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep36
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep37
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep38
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep39
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep4
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep40
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep41
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep42
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep5
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep6
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep7
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep8
Synacor ≫ Zimbra Collaboration Suite Version9.0.0 Updatep9
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.3% | 0.53 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-918 Server-Side Request Forgery (SSRF)
The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.