Vulnerability Database
Blog
FAQ
Docs
CVE-2023-37580
See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-37580
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-37580.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-37580
Published
2023-07-31T16:15:10Z
Modified
2024-09-03T04:32:28.999394Z
Severity
6.1 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVSS Calculator
Summary
[none]
Details
Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41 allows XSS in the Zimbra Classic Web Client.
References
http://www.openwall.com/lists/oss-security/2023/11/17/2
https://wiki.zimbra.com/wiki/Security_Center
https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy
Affected packages
Git
/
github.com/zimbra/zm-build
Affected ranges
Type
GIT
Repo
https://github.com/zimbra/zm-build
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
ac6081fa002b1511e926aba37740d2b6c20f3f43
Affected versions
8.*
8.7.10
8.7.11
8.7.6
8.7.7
8.7.9
8.8.0.beta1
8.8.10
8.8.11
8.8.11.p3
8.8.12
8.8.2
8.8.3
8.8.4
8.8.6
8.8.7
8.8.8
8.8.9
8.8.9.p1
8.8.9.p3
CVE-2023-37580 - OSV