First published: Sun Feb 04 2018(Updated: )
Synacor Zimbra Collaboration Suite (ZCS) before 8.8.3 has Persistent XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Synacor Zimbra Collaboration Suite | <8.8.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-17703 is a vulnerability in the Synacor Zimbra Collaboration Suite (ZCS) before version 8.8.3 that allows for persistent XSS attacks.
CVE-2017-17703 allows attackers to execute malicious script code in the context of an authenticated user, potentially compromising user's data and privacy.
CVE-2017-17703 has a severity rating of medium (6.1).
To fix CVE-2017-17703, you need to update Synacor Zimbra Collaboration Suite to version 8.8.3 or later, as this version includes a patch that addresses the vulnerability.
You can find more information about CVE-2017-17703 in the following references: [link1](https://bugzilla.zimbra.com/show_bug.cgi?id=108265) and [link2](https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories).