|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-10-15 | |
| Rule Name: | Zimbra Collaboration Remote Code Execution Vulnerability (CVE-2024-45519) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | The postjournal service in Zimbra Collaboration (ZCS) before 8.8.15 Patch 46, 9 before 9.0.0 Patch 41, 10 before 10.0.9, and 10.1 before 10.1.1 sometimes allows unauthenticated users to execute commands. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | https://wiki.zimbra.com/wiki/Security_Center https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy |
|
| Solutions |
|---|
| Please refer to announcements or patches release by the vendor: https://wiki.zimbra.com/wiki/Security_Center |