Warning: CVE-2023-38750 Zimbra ZCS XSS Vulnerability
Referentie:
Advisory #2023-88
Versie:
1.0
Geïmpacteerde software:
Zimbra Collaboration (ZCS)
Type:
Cross-Site Scripting (XSS) Vulnerability
CVE/CVSS:
CVE-2023-38750/undisclosed
Datum:
28/07/2023
Bronnen
https://info.zimbra.com/security-update-zimbra-collaboration-suite-versi...
https://wiki.zimbra.com/wiki/Security_Center
Risico’s
An actively exploited zero-day vulnerability tracked as CVE-2023-38750 was found in the Zimbra Collaboration (ZCS). Successful exploitation could impact the confidentiality and integrity of data.
Beschrijving
On July 13th, 2023, Zimbra warned customers of an actively exploited vulnerability in Zimbra Collaboration (ZCS). Zimbra urged customers to apply mitigations to version 8.8.15. This vulnerability was discovered by Clément Lecigne of Google Threat Analysis Group (TAG).
On July 26th, 2023, Zimbra released an update to address CVE-2023-38750.
CVE-2023-37580 is a Cross-Site Scripting (XSS) Vulnerability that could lead to exposure of internal JSP and XML files.
Aanbevolen acties
The Centre for Cybersecurity Belgium recommends system administrators to patch vulnerable systems as soon as possible and to analyse system and network logs for any suspicious activity.
Update the installation the latest version available on: https://wiki.zimbra.com/wiki/Security_Center
Patched versions:
- ZCS 10.0.2
- ZCS 9.0.0 Patch 34
- ZCS 8.8.15 Patch 41
Referenties
https://nvd.nist.gov/vuln/detail/CVE-2023-37580
https://www.cisa.gov/news-events/alerts/2023/07/27/cisa-adds-one-known-e...
https://www.bleepingcomputer.com/news/security/zimbra-patches-zero-day-v...