First published: Wed Oct 03 2018(Updated: )
Zimbra Collaboration before 8.8.10 GA allows text content spoofing via a loginErrorCode value.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Synacor Zimbra Collaboration Suite | <8.8.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-17938 is a vulnerability found in Zimbra Collaboration before version 8.8.10 GA, which allows text content spoofing.
The severity of CVE-2018-17938 is medium, with a CVSS score of 5.3.
CVE-2018-17938 allows text content spoofing in Zimbra Collaboration before version 8.8.10 GA.
To fix CVE-2018-17938, upgrade to Zimbra Collaboration version 8.8.10 GA or later.
You can find more information about CVE-2018-17938 in the Zimbra Bugzilla and Zimbra Wiki.