CVE-2024-45519

CRITICAL KEV NUCLEI

Zimbra Collaboration <8.8.15-9.0.0-10.0.9-10.1.1 - Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2024-45519 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added October 3, 2024. EIP tracks 3 public exploits from researchers including Chocapikk, p33d, sec13b. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains a functional exploit for CVE-2024-45519, targeting Zimbra Collaboration's `postjournal` service. The exploit leverages SMTP command injection to achieve unauthenticated remote code execution via a crafted RCPT TO command.

Description

The postjournal service in Zimbra Collaboration (ZCS) before 8.8.15 Patch 46, 9 before 9.0.0 Patch 41, 10 before 10.0.9, and 10.1 before 10.1.1 sometimes allows unauthenticated users to execute commands.

Exploits (3)

nomisec WORKING POC 134 stars
by Chocapikk · remote
https://github.com/Chocapikk/CVE-2024-45519

The repository contains a functional exploit for CVE-2024-45519, targeting Zimbra Collaboration's `postjournal` service. The exploit leverages SMTP command injection to achieve unauthenticated remote code execution via a crafted RCPT TO command.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Zimbra Collaboration (ZCS) versions 8.8.15, 9.0.0, 10.0.x before 10.0.9, and 10.1.0
No auth needed
Prerequisites: Network access to the SMTP port (default 25) · Vulnerable Zimbra instance with `postjournal` service enabled
devstral-2 · analyzed Feb 19, 2026 Full analysis →
nomisec WORKING POC 42 stars
by p33d · remote
https://github.com/p33d/CVE-2024-45519

This repository contains a functional exploit PoC for CVE-2024-45519, targeting an SMTP server vulnerability. The script checks for the vulnerability by sending a crafted RCPT TO command with command injection and, if successful, establishes a reverse shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: SMTP server (specific version not specified)
No auth needed
Prerequisites: Open SMTP port (25) · Network connectivity to target · Listener set up for reverse shell
devstral-2 · analyzed Feb 19, 2026 Full analysis →
nomisec WORKING POC
by sec13b · remote
https://github.com/sec13b/CVE-2024-45519

This repository contains a functional exploit for CVE-2024-45519, targeting Zimbra's SMTP service. The exploit leverages command injection via crafted email addresses to achieve remote code execution (RCE) and uses Interactsh for out-of-band interaction detection.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Zimbra Collaboration Suite (version not specified)
No auth needed
Prerequisites: Network access to Zimbra SMTP service · Interactsh server for out-of-band detection
devstral-2 · analyzed Feb 19, 2026 Full analysis →

Nuclei Templates (1)

Zimbra Collaboration Suite < 9.0.0 - Remote Code Execution
CRITICALby pdresearch,iamnoooob,parthmalhotra,ice3man543
Shodan: http.title:"zimbra collaboration suite" || http.title:"zimbra web client sign in" || http.favicon.hash:1624375939
FOFA: title="zimbra web client sign in" || title="zimbra collaboration suite"

References (8)

Core 8

Scores

CVSS v3 10.0
EPSS 0.9416
EPSS Percentile 99.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation active
Automatable yes
Technical Impact total

Details

CISA KEV 2024-10-03
VulnCheck KEV 2024-10-01
InTheWild.io 2024-10-03
ENISA EUVD EUVD-2024-41520
CWE
CWE-78
Status published
Products (2)
synacor/zimbra_collaboration_suite 8.8.15 (47 CPE variants)
synacor/zimbra_collaboration_suite 9.0.0 (3 CPE variants)
Published Oct 02, 2024
KEV Added Oct 03, 2024
Tracked Since Feb 18, 2026