CVE-2022-45913

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-45913
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-45913.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-45913
Published
2023-01-06T23:15:09Z
Modified
2024-09-03T04:32:26.686865Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur via one of attributes in webmail URLs to execute arbitrary JavaScript code, leading to information disclosure.

References

Affected packages

Git / github.com/zimbra/zm-build

Affected versions

8.*

8.7.10
8.7.11
8.7.6
8.7.7
8.7.9
8.8.0.beta1
8.8.10
8.8.11
8.8.11.p3
8.8.12
8.8.15
8.8.15.p3
8.8.15.p5
8.8.2
8.8.3
8.8.4
8.8.6
8.8.7
8.8.8
8.8.9
8.8.9.p1
8.8.9.p3

9.*

9.0.0
9.0.0.p4