Zimbra Zimbra Collaboration Suite — known CVE vulnerabilities
Every CVE whose affected-product data names Zimbra Zimbra Collaboration Suite, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2015-7610 — CVSS 8.8 (high): Cross-site request forgery (CSRF) vulnerability in the login form in Zimbra Collaboration Suite (aka ZCS) before 8.6.0 Patch 10, 8.7.x…
CVE-2018-10939 — CVSS 6.1 (medium): Zimbra Web Client (ZWC) in Zimbra Collaboration Suite 8.8 before 8.8.8.Patch4 and 8.7 before 8.7.11.Patch4 has Persistent XSS via a contact…