CVE-2022-27925: Zimbra Collaboration (ZCS) Arbitrary File Upload Vulnerability
First published: Wed Apr 20 2022(Updated: )
Synacor Zimbra Collaboration Suite (ZCS) contains flaw in the mboximport functionality, allowing an authenticated attacker to upload arbitrary files to perform remote code execution. This vulnerability was chained with CVE-2022-37042 which allows for unauthenticated remote code execution.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zimbra Collaboration Suite | =8.8.15 | |
| Zimbra Collaboration Suite | =9.0.0 | |
| Zimbra Collaboration Suite | ||
| Zimbra Collaboration Suite | =8.8.15 | |
| Zimbra Collaboration Suite | =9.0.0 | |
| Zimbra Collaboration Suite | =9.0.0-p1 | |
| Zimbra Collaboration Suite | =9.0.0-p10 | |
| Zimbra Collaboration Suite | =9.0.0-p11 | |
| Zimbra Collaboration Suite | =9.0.0-p12 | |
| Zimbra Collaboration Suite | =9.0.0-p13 | |
| Zimbra Collaboration Suite | =9.0.0-p14 | |
| Zimbra Collaboration Suite | =9.0.0-p15 | |
| Zimbra Collaboration Suite | =9.0.0-p16 | |
| Zimbra Collaboration Suite | =9.0.0-p17 | |
| Zimbra Collaboration Suite | =9.0.0-p18 | |
| Zimbra Collaboration Suite | =9.0.0-p19 | |
| Zimbra Collaboration Suite | =9.0.0-p2 | |
| Zimbra Collaboration Suite | =9.0.0-p20 | |
| Zimbra Collaboration Suite | =9.0.0-p21 | |
| Zimbra Collaboration Suite | =9.0.0-p22 | |
| Zimbra Collaboration Suite | =9.0.0-p23 | |
| Zimbra Collaboration Suite | =9.0.0-p3 | |
| Zimbra Collaboration Suite | =9.0.0-p4 | |
| Zimbra Collaboration Suite | =9.0.0-p5 | |
| Zimbra Collaboration Suite | =9.0.0-p6 | |
| Zimbra Collaboration Suite | =9.0.0-p7 | |
| Zimbra Collaboration Suite | =9.0.0-p8 | |
| Zimbra Collaboration Suite | =9.0.0-p9 | |
| =8.8.15 | ||
| =9.0.0 | ||
| =9.0.0-p1 | ||
| =9.0.0-p10 | ||
| =9.0.0-p11 | ||
| =9.0.0-p12 | ||
| =9.0.0-p13 | ||
| =9.0.0-p14 | ||
| =9.0.0-p15 | ||
| =9.0.0-p16 | ||
| =9.0.0-p17 | ||
| =9.0.0-p18 | ||
| =9.0.0-p19 | ||
| =9.0.0-p2 | ||
| =9.0.0-p20 | ||
| =9.0.0-p21 | ||
| =9.0.0-p22 | ||
| =9.0.0-p23 | ||
| =9.0.0-p3 | ||
| =9.0.0-p4 | ||
| =9.0.0-p5 | ||
| =9.0.0-p6 | ||
| =9.0.0-p7 | ||
| =9.0.0-p8 | ||
| =9.0.0-p9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/168146/Zimbra-Zip-Path-Traversal.html
- https://wiki.zimbra.com/wiki/Security_Center
- https://wiki.zimbra.com/wiki/Zimbra_Releases/9.0.0/P24
- https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
- https://blog.zimbra.com/2022/08/authentication-bypass-in-mailboximportservlet-vulnerability/;
- https://nvd.nist.gov/vuln/detail/CVE-2022-27925
Frequently Asked Questions
What is CVE-2022-27925?
CVE-2022-27925 is a vulnerability in Zimbra Collaboration (ZCS) that allows an authenticated attacker to upload arbitrary files and perform remote code execution.
How severe is CVE-2022-27925?
CVE-2022-27925 has a severity rating of 7.2 (high).
What software versions are affected by CVE-2022-27925?
Zimbra Collaboration versions 8.8.15 and 9.0.0 are affected by CVE-2022-27925.
How can an attacker exploit CVE-2022-27925?
An attacker can exploit CVE-2022-27925 by using the mboximport functionality to upload arbitrary files and execute remote code.
Are there any fixes or patches available for CVE-2022-27925?
Yes, Zimbra Collaboration release 9.0.0 Patch 24 contains a fix for CVE-2022-27925.
- agent/type
- agent/title
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/references
- agent/author
- agent/source
- collector/mitre-cve
- source/MITRE
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/description
- agent/event
- agent/tags
- agent/last-modified-date
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/nvd-cve
- collector/cisa-known-exploited
- source/CISA
- exploited/true
- ransomware/true
- vendor/zimbra
- canonical/zimbra collaboration suite
- version/zimbra collaboration suite/8.8.15
- version/zimbra collaboration suite/9.0.0
- vendor/synacor
- version/zimbra collaboration suite/9.0.0-p1
- version/zimbra collaboration suite/9.0.0-p10
- version/zimbra collaboration suite/9.0.0-p11
- version/zimbra collaboration suite/9.0.0-p12
- version/zimbra collaboration suite/9.0.0-p13
- version/zimbra collaboration suite/9.0.0-p14
- version/zimbra collaboration suite/9.0.0-p15
- version/zimbra collaboration suite/9.0.0-p16
- version/zimbra collaboration suite/9.0.0-p17
- version/zimbra collaboration suite/9.0.0-p18
- version/zimbra collaboration suite/9.0.0-p19
- version/zimbra collaboration suite/9.0.0-p2
- version/zimbra collaboration suite/9.0.0-p20
- version/zimbra collaboration suite/9.0.0-p21
- version/zimbra collaboration suite/9.0.0-p22
- version/zimbra collaboration suite/9.0.0-p23
- version/zimbra collaboration suite/9.0.0-p3
- version/zimbra collaboration suite/9.0.0-p4
- version/zimbra collaboration suite/9.0.0-p5
- version/zimbra collaboration suite/9.0.0-p6
- version/zimbra collaboration suite/9.0.0-p7
- version/zimbra collaboration suite/9.0.0-p8
- version/zimbra collaboration suite/9.0.0-p9