CVE-2019-9670

CRITICAL KEV NUCLEI

Synacor Zimbra Collaboration Suite <8.7.11p10 - XXE

Title source: llm

Description

mailboxd component in Synacor Zimbra Collaboration Suite 8.7.x before 8.7.11p10 has an XML External Entity injection (XXE) vulnerability, as demonstrated by Autodiscover/Autodiscover.xml.

Exploits (9)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotelinux
https://www.exploit-db.com/exploits/46693
nomisec WORKING POC 27 stars
by rek7 · remote
https://github.com/rek7/Zimbra-RCE
nomisec WORKING POC 1 stars
by attackgithub · remote
https://github.com/attackgithub/Zimbra-RCE
nomisec SCANNER
by Cappricio-Securities · poc
https://github.com/Cappricio-Securities/CVE-2019-9670
nomisec WORKING POC
by Phuong39 · poc
https://github.com/Phuong39/zaber
metasploit WORKING POC EXCELLENT
by An Trinh, Khanh Viet Pham, Jacob Robles · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/zimbra_xxe_rce.rb

Nuclei Templates (1)

Synacor Zimbra Collaboration <8.7.11p10 - XML External Entity Injection
CRITICALby ree4pwn
Shodan: http.title:"zimbra collaboration suite" || http.title:"zimbra web client sign in"
FOFA: title="zimbra web client sign in" || title="zimbra collaboration suite"

References (7)

Scores

CVSS v3 9.8
EPSS 0.9443
EPSS Percentile 100.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-01-10
VulnCheck KEV 2020-07-16
InTheWild.io 2019-04-03
ENISA EUVD EUVD-2019-19036
CWE
CWE-611
Status published
Products (2)
synacor/zimbra_collaboration_suite 8.7.11 (10 CPE variants)
synacor/zimbra_collaboration_suite 8.7.0 - 8.7.11
Published May 29, 2019
KEV Added Jan 10, 2022
Tracked Since Feb 18, 2026