Security Update for Zimbra Collaboration Suite Version 8.8.15 - 20230717002

Overview

Synacor has released a security update to address an XSS vulnerability found in Zimbra Collaboration Suite Version 8.8.15, which is under active exploitation.

What is vulnerable?

An XSS vulnerability in Zimbra Collaboration Suite could have a potential impact on the confidentiality and integrity of data.

The vulnerability affects the following products:

• Zimbra Collaboration Suite Version 8.8.15

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of one month... (refer Patch Management):

• Security Update for Zimbra Collaboration Suite Version 8.8.15 - Zimbra : Blog

Additional References

• Zimbra Collaboration Suite Cross-Site Scripting (XSS) Zero-day Vulnerability -- Qualys ThreatPROTECT