RSS   Podatności dla 'Zm-mailbox'   RSS

2020-03-20
 
CVE-2020-10194

CWE-863
 

 
cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from the intended behavior in which the domain of the authenticated user must match the domain of the galsync account in the request.

 

 >>> Vendor: Zimbra 7 Produkty
Collaboration suite
Collaboration
Collaboration server
Zimbra
Zimbra collaboration suite
Zimbra collaboration server
Zm-mailbox


Copyright 2024, cxsecurity.com

 

Back to Top