First published: Mon Jan 27 2020(Updated: )
Zimbra Collaboration 8.7.x - 8.8.11P2 contains non-persistent XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zimbra Collaboration Server | >=8.7.0<=8.8.11 | |
Zimbra Collaboration Server | =8.8.11-p1 | |
Zimbra Collaboration Server | =8.8.11-p2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2019-8947 is medium.
The affected software for CVE-2019-8947 is Zimbra Collaboration Server 8.7.x - 8.8.11P2.
CVE-2019-8947 allows for non-persistent XSS attacks on Zimbra Collaboration Server 8.7.x - 8.8.11P2.
To fix the XSS vulnerability in Zimbra Collaboration Server, it is recommended to update to a version that is not affected, such as 8.8.11-p3 or later.
You can find more information about CVE-2019-8947 on the Zimbra Bugzilla website using the following links: [link1], [link2], [link3].