CVE-2024-50599
- Source
- https://cve.org/CVERecord?id=CVE-2024-50599
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50599.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-50599
- Published
- 2024-11-07T21:15:06.880Z
- Modified
- 2026-04-10T05:18:11.687679Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
A reflected Cross-Site Scripting (XSS) vulnerability has been identified in Zimbra Collaboration Suite (ZCS) 8.8.15, affecting one of the webmail calendar endpoints. This arises from improper handling of user-supplied input, allowing an attacker to inject malicious code that is reflected back in the HTML response.
- References
Affected packages
Git / github.com/zimbra/zm-build
Affected ranges
- Type
- GIT
- Repo
- https://github.com/zimbra/zm-build
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "8.8.15-NA" }, { "introduced": "0" }, { "last_affected": "8.8.15-p1" }, { "introduced": "0" }, { "last_affected": "8.8.15-p11" }, { "introduced": "0" }, { "last_affected": "8.8.15-p20" }, { "introduced": "0" }, { "last_affected": "8.8.15-p26" }, { "introduced": "0" }, { "last_affected": "8.8.15-p3" }, { "introduced": "0" }, { "last_affected": "8.8.15-p30" }, { "introduced": "0" }, { "last_affected": "8.8.15-p31" }, { "introduced": "0" }, { "last_affected": "8.8.15-p32" }, { "introduced": "0" }, { "last_affected": "8.8.15-p33" }, { "introduced": "0" }, { "last_affected": "8.8.15-p34" }, { "introduced": "0" }, { "last_affected": "8.8.15-p35" }, { "introduced": "0" }, { "last_affected": "8.8.15-p40" }, { "introduced": "0" }, { "last_affected": "8.8.15-p43" }, { "introduced": "0" }, { "last_affected": "8.8.15-p44" }, { "introduced": "0" }, { "last_affected": "8.8.15-p45" }, { "introduced": "0" }, { "last_affected": "8.8.15-p5" } ] }
- Type
- GIT
- Repo
- https://github.com/zimbra/zm-mailbox
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "last_affected": "8.8.15-p10" }, { "introduced": "0" }, { "last_affected": "8.8.15-p12" }, { "introduced": "0" }, { "last_affected": "8.8.15-p13" }, { "introduced": "0" }, { "last_affected": "8.8.15-p14" }, { "introduced": "0" }, { "last_affected": "8.8.15-p15" }, { "introduced": "0" }, { "last_affected": "8.8.15-p16" }, { "introduced": "0" }, { "last_affected": "8.8.15-p17" }, { "introduced": "0" }, { "last_affected": "8.8.15-p18" }, { "introduced": "0" }, { "last_affected": "8.8.15-p2" }, { "introduced": "0" }, { "last_affected": "8.8.15-p23" }, { "introduced": "0" }, { "last_affected": "8.8.15-p24" }, { "introduced": "0" }, { "last_affected": "8.8.15-p25" }, { "introduced": "0" }, { "last_affected": "8.8.15-p27" }, { "introduced": "0" }, { "last_affected": "8.8.15-p29" }, { "introduced": "0" }, { "last_affected": "8.8.15-p31\\.1" }, { "introduced": "0" }, { "last_affected": "8.8.15-p36" }, { "introduced": "0" }, { "last_affected": "8.8.15-p37" }, { "introduced": "0" }, { "last_affected": "8.8.15-p39" }, { "introduced": "0" }, { "last_affected": "8.8.15-p4" }, { "introduced": "0" }, { "last_affected": "8.8.15-p41" }, { "introduced": "0" }, { "last_affected": "8.8.15-p6" }, { "introduced": "0" }, { "last_affected": "8.8.15-p7" }, { "introduced": "0" }, { "last_affected": "8.8.15-p8" }, { "introduced": "0" }, { "last_affected": "8.8.15-p9" } ] }
Affected versions
8.*
8.7.6
8.7.7
8.8.10
8.8.12
8.8.15
8.8.15.U20
8.8.15.p1
8.8.15.p10
8.8.15.p11
8.8.15.p12
8.8.15.p13
8.8.15.p14
8.8.15.p15
8.8.15.p15.nysa
8.8.15.p16
8.8.15.p17
8.8.15.p18
8.8.15.p2
8.8.15.p20
8.8.15.p21
8.8.15.p23
8.8.15.p24
8.8.15.p25
8.8.15.p26
8.8.15.p27
8.8.15.p29
8.8.15.p3
8.8.15.p30
8.8.15.p31
8.8.15.p31.1
8.8.15.p32
8.8.15.p33
8.8.15.p34
8.8.15.p35
8.8.15.p36
8.8.15.p37
8.8.15.p39
8.8.15.p4
8.8.15.p40
8.8.15.p41
8.8.15.p43
8.8.15.p44
8.8.15.p45
8.8.15.p5
8.8.15.p6
8.8.15.p7
8.8.15.p8
8.8.15.p9
8.8.2
8.8.3
8.8.4
8.8.5
8.8.6
8.8.7
8.8.8
8.8.9
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-50599.json"
unresolved_ranges
[
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.8.15-p19"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.8.15-p22"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.8.15-p28"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.8.15-p38"
}
]
},
{
"events": [
{
"introduced": "0"
},
{
"last_affected": "8.8.15-p42"
}
]
}
]