CyberSec.Space Logo
Back to CVE Browser

CVE-2019-9670

Known Exploited (CISA KEV)CRITICAL
9.8
CVSS Severity Score
EPSS Score82.2890%
EPSS Percentile95.58th
PublishedMay 29, 2019
Last ModifiedNov 4, 2025

Vulnerability Description

mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML External Entity injection (XXE) vulnerability, as demonstrated by Autodiscover/Autodiscover.xml.

Affected Platforms (CPE)

πŸ“¦
Synacor

Zimbra Collaboration Suite

>= 8.7.0 and < 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11
πŸ“¦
Synacor

Zimbra Collaboration Suite

= 8.7.11

References & Advisories

πŸ”— http://packetstormsecurity.com/files/152487/Zimbra-Collaboration-Autodiscover-Servlet-XXE-ProxyServlet-SSRF.html
πŸ”— http://www.rapid7.com/db/modules/exploit/linux/http/zimbra_xxe_rce
πŸ”— https://bugzilla.zimbra.com/show_bug.cgi?id=109129
πŸ”— https://isc.sans.edu/forums/diary/CVE20199670+Zimbra+Collaboration+Suite+XXE+vulnerability/27570/
πŸ”— https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
πŸ”— https://www.exploit-db.com/exploits/46693/
πŸ”— http://packetstormsecurity.com/files/152487/Zimbra-Collaboration-Autodiscover-Servlet-XXE-ProxyServlet-SSRF.html
πŸ”— http://www.rapid7.com/db/modules/exploit/linux/http/zimbra_xxe_rce

Related Vulnerabilities

CVE-2020-77969.8

Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled.

CVE-2018-201609.8

ZxChat (aka ZeXtras Chat), as used for zimbra-chat and zimbra-talk in Synacor Zimbra Collaboration Suite 8.7 and 8.8 and in other ...

CVE-2019-69809.8

Synacor Zimbra Collaboration Suite 8.7.x through 8.8.11 allows insecure object deserialization in the IMAP component.

CVE-2021-352099.8

An issue was discovered in ProxyServlet.java in the /proxy servlet in Zimbra Collaboration Suite 8.8 before 8.8.15 Patch 23 and 9....