Technologyglobal✓ verified · 95%

Synacor Zimbra Collaboration Suite (ZCS) Arbitrary File Upload Vulnerability

Name: Synacor Zimbra Collaboration Suite (ZCS) Arbitrary File Upload Vulnerability
Start: 2022-08-11
Location: Global (internet)

When: 2022-08-11 00:00 UTC · day precision
Where: Global (internet)
Category: cyber_exploit · ransomware

Synacor Zimbra Collaboration Suite (ZCS) contains flaw in the mboximport functionality, allowing an authenticated attacker to upload arbitrary files to perform remote code execution. This vulnerability was chained with CVE-2022-37042 which allows for unauthenticated remote code execution.

Sources

CISA ↗ · first seen 2022-08-11 00:00 UTC

Defaxon links out to the original reporting and never republishes article text.

Correlated events

Computed by the Defaxon correlation engine — linked by shared actors, co-location, and temporal proximity. Scored hypotheses, never causal claims.

No correlated events found in the current window. As more events arrive, connections form automatically.

← Back to the live map