CyberSec.Space Logo
Back to CVE Browser

CVE-2017-6821

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile7.29th
PublishedMay 23, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

Directory traversal vulnerability in Zimbra Collaboration Suite (aka ZCS) before 8.7.6 allows attackers to have unspecified impact via unknown vectors.

Affected Platforms (CPE)

πŸ“¦
Synacor

Zimbra Collaboration Suite

<= 8.7.5

References & Advisories

πŸ”— http://www.securityfocus.com/bid/98090
πŸ”— https://wiki.zimbra.com/wiki/Security_Center
πŸ”— https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.6
πŸ”— http://www.securityfocus.com/bid/98090
πŸ”— https://wiki.zimbra.com/wiki/Security_Center
πŸ”— https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.6

Related Vulnerabilities

CVE-2019-96709.8

mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML External Entity injection (XXE) vulnera...

CVE-2018-201609.8

ZxChat (aka ZeXtras Chat), as used for zimbra-chat and zimbra-talk in Synacor Zimbra Collaboration Suite 8.7 and 8.8 and in other ...

CVE-2019-69809.8

Synacor Zimbra Collaboration Suite 8.7.x through 8.8.11 allows insecure object deserialization in the IMAP component.

CVE-2020-77969.8

Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled.