CVE-2017-6821
CRITICALZimbra Collaboration Suite <8.7.6 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in Zimbra Collaboration Suite (aka ZCS) before 8.7.6 allows attackers to have unspecified impact via unknown vectors.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://wiki.zimbra.com/wiki/Security_Center
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/98090
Release Notes x_refsource_confirm
https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.6
Scores
CVSS v3
9.8
EPSS
0.0380
EPSS Percentile
88.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (1)
synacor/zimbra_collaboration_suite
< 8.7.5
Published
May 23, 2017
Tracked Since
Feb 18, 2026