First published: Wed Dec 15 2021(Updated: )
An issue in /domain/service/.ewell-known/caldav of Zimbra Collaboration 8.8.12 allows attackers to redirect users to any arbitrary website of their choosing.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Synacor Zimbra Collaboration Suite | =8.8.12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-18985 is medium.
CVE-2020-18985 affects Zimbra Collaboration version 8.8.12.
CVE-2020-18985 allows attackers to redirect users to any arbitrary website of their choosing.
It is recommended to update Zimbra Collaboration to a version that is not affected by CVE-2020-18985.
You can find more information about CVE-2020-18985 at the following reference: https://github.com/buxu/bug/issues/3