What is the severity of CVE-2023-41106?

CVE-2023-41106 has been categorized as a critical vulnerability due to its potential to allow unauthorized access to Zimbra accounts.

How do I fix CVE-2023-41106?

To fix CVE-2023-41106, you should upgrade your Zimbra Collaboration instance to version 10.0.3 or later, or apply Patch 35 for version 9.0.0 or Patch 42 for version 8.8.15.

Who is affected by CVE-2023-41106?

CVE-2023-41106 affects all versions of Zimbra Collaboration prior to 10.0.3, including specific patches of versions 8.8.15 and 9.0.0.

What type of vulnerability is CVE-2023-41106?

CVE-2023-41106 is an authorization flaw that could allow attackers to gain access to sensitive Zimbra account information.

Is there a workaround for CVE-2023-41106?

There are no known workarounds for CVE-2023-41106 other than applying the recommended updates and patches promptly.

Vulnerability/
CVE-2023-41106

high

7.5

7/12/2023

12/12/2023

CVE-2023-41106

First published: Thu Dec 07 2023(Updated: )

An issue was discovered in Zimbra Collaboration (ZCS) before 10.0.3. An attacker can gain access to a Zimbra account. This is also fixed in 9.0.0 Patch 35 and 8.8.15 Patch 42.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Zimbra Collaboration	<8.8.15
Zimbra Collaboration	>=10.0.0<10.0.3
Zimbra Collaboration	=8.8.15
Zimbra Collaboration	=8.8.15-p1
Zimbra Collaboration	=8.8.15-p10
Zimbra Collaboration	=8.8.15-p11
Zimbra Collaboration	=8.8.15-p12
Zimbra Collaboration	=8.8.15-p13
Zimbra Collaboration	=8.8.15-p14
Zimbra Collaboration	=8.8.15-p15
Zimbra Collaboration	=8.8.15-p16
Zimbra Collaboration	=8.8.15-p17
Zimbra Collaboration	=8.8.15-p18
Zimbra Collaboration	=8.8.15-p19
Zimbra Collaboration	=8.8.15-p2
Zimbra Collaboration	=8.8.15-p20
Zimbra Collaboration	=8.8.15-p21
Zimbra Collaboration	=8.8.15-p22
Zimbra Collaboration	=8.8.15-p23
Zimbra Collaboration	=8.8.15-p24
Zimbra Collaboration	=8.8.15-p25
Zimbra Collaboration	=8.8.15-p26
Zimbra Collaboration	=8.8.15-p27
Zimbra Collaboration	=8.8.15-p28
Zimbra Collaboration	=8.8.15-p29
Zimbra Collaboration	=8.8.15-p3
Zimbra Collaboration	=8.8.15-p30
Zimbra Collaboration	=8.8.15-p31
Zimbra Collaboration	=8.8.15-p32
Zimbra Collaboration	=8.8.15-p33
Zimbra Collaboration	=8.8.15-p34
Zimbra Collaboration	=8.8.15-p35
Zimbra Collaboration	=8.8.15-p37
Zimbra Collaboration	=8.8.15-p4
Zimbra Collaboration	=8.8.15-p40
Zimbra Collaboration	=8.8.15-p41
Zimbra Collaboration	=8.8.15-p5
Zimbra Collaboration	=8.8.15-p6
Zimbra Collaboration	=8.8.15-p7
Zimbra Collaboration	=8.8.15-p8
Zimbra Collaboration	=8.8.15-p9
Zimbra Collaboration	=9.0.0
Zimbra Collaboration	=9.0.0-p0
Zimbra Collaboration	=9.0.0-p1
Zimbra Collaboration	=9.0.0-p10
Zimbra Collaboration	=9.0.0-p11
Zimbra Collaboration	=9.0.0-p12
Zimbra Collaboration	=9.0.0-p13
Zimbra Collaboration	=9.0.0-p14
Zimbra Collaboration	=9.0.0-p15
Zimbra Collaboration	=9.0.0-p16
Zimbra Collaboration	=9.0.0-p19
Zimbra Collaboration	=9.0.0-p2
Zimbra Collaboration	=9.0.0-p20
Zimbra Collaboration	=9.0.0-p21
Zimbra Collaboration	=9.0.0-p23
Zimbra Collaboration	=9.0.0-p24
Zimbra Collaboration	=9.0.0-p24.1
Zimbra Collaboration	=9.0.0-p25
Zimbra Collaboration	=9.0.0-p26
Zimbra Collaboration	=9.0.0-p27
Zimbra Collaboration	=9.0.0-p3
Zimbra Collaboration	=9.0.0-p33
Zimbra Collaboration	=9.0.0-p34
Zimbra Collaboration	=9.0.0-p4
Zimbra Collaboration	=9.0.0-p5
Zimbra Collaboration	=9.0.0-p6
Zimbra Collaboration	=9.0.0-p7
Zimbra Collaboration	=9.0.0-p7.1
Zimbra Collaboration	=9.0.0-p8
Zimbra Collaboration	=9.0.0-p9

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-41106?
CVE-2023-41106 has been categorized as a critical vulnerability due to its potential to allow unauthorized access to Zimbra accounts.
How do I fix CVE-2023-41106?
To fix CVE-2023-41106, you should upgrade your Zimbra Collaboration instance to version 10.0.3 or later, or apply Patch 35 for version 9.0.0 or Patch 42 for version 8.8.15.
Who is affected by CVE-2023-41106?
CVE-2023-41106 affects all versions of Zimbra Collaboration prior to 10.0.3, including specific patches of versions 8.8.15 and 9.0.0.
What type of vulnerability is CVE-2023-41106?
CVE-2023-41106 is an authorization flaw that could allow attackers to gain access to sensitive Zimbra account information.
Is there a workaround for CVE-2023-41106?
There are no known workarounds for CVE-2023-41106 other than applying the recommended updates and patches promptly.

collector/mitre-cve
collector/nvd-api
agent/severity
agent/references
agent/author
agent/type
agent/tags
agent/event
agent/description
agent/softwarecombine
agent/last-modified-date
agent/first-publish-date
agent/trending
vendor/zimbra
canonical/zimbra collaboration
version/zimbra collaboration/10.0.0
version/zimbra collaboration/8.8.15
version/zimbra collaboration/8.8.15-p1
version/zimbra collaboration/8.8.15-p10
version/zimbra collaboration/8.8.15-p11
version/zimbra collaboration/8.8.15-p12
version/zimbra collaboration/8.8.15-p13
version/zimbra collaboration/8.8.15-p14
version/zimbra collaboration/8.8.15-p15
version/zimbra collaboration/8.8.15-p16
version/zimbra collaboration/8.8.15-p17
version/zimbra collaboration/8.8.15-p18
version/zimbra collaboration/8.8.15-p19
version/zimbra collaboration/8.8.15-p2
version/zimbra collaboration/8.8.15-p20
version/zimbra collaboration/8.8.15-p21
version/zimbra collaboration/8.8.15-p22
version/zimbra collaboration/8.8.15-p23
version/zimbra collaboration/8.8.15-p24
version/zimbra collaboration/8.8.15-p25
version/zimbra collaboration/8.8.15-p26
version/zimbra collaboration/8.8.15-p27
version/zimbra collaboration/8.8.15-p28
version/zimbra collaboration/8.8.15-p29
version/zimbra collaboration/8.8.15-p3
version/zimbra collaboration/8.8.15-p30
version/zimbra collaboration/8.8.15-p31
version/zimbra collaboration/8.8.15-p32
version/zimbra collaboration/8.8.15-p33
version/zimbra collaboration/8.8.15-p34
version/zimbra collaboration/8.8.15-p35
version/zimbra collaboration/8.8.15-p37
version/zimbra collaboration/8.8.15-p4
version/zimbra collaboration/8.8.15-p40
version/zimbra collaboration/8.8.15-p41
version/zimbra collaboration/8.8.15-p5
version/zimbra collaboration/8.8.15-p6
version/zimbra collaboration/8.8.15-p7
version/zimbra collaboration/8.8.15-p8
version/zimbra collaboration/8.8.15-p9
version/zimbra collaboration/9.0.0
version/zimbra collaboration/9.0.0-p0
version/zimbra collaboration/9.0.0-p1
version/zimbra collaboration/9.0.0-p10
version/zimbra collaboration/9.0.0-p11
version/zimbra collaboration/9.0.0-p12
version/zimbra collaboration/9.0.0-p13
version/zimbra collaboration/9.0.0-p14
version/zimbra collaboration/9.0.0-p15
version/zimbra collaboration/9.0.0-p16
version/zimbra collaboration/9.0.0-p19
version/zimbra collaboration/9.0.0-p2
version/zimbra collaboration/9.0.0-p20
version/zimbra collaboration/9.0.0-p21
version/zimbra collaboration/9.0.0-p23
version/zimbra collaboration/9.0.0-p24
version/zimbra collaboration/9.0.0-p24.1
version/zimbra collaboration/9.0.0-p25
version/zimbra collaboration/9.0.0-p26
version/zimbra collaboration/9.0.0-p27
version/zimbra collaboration/9.0.0-p3
version/zimbra collaboration/9.0.0-p33
version/zimbra collaboration/9.0.0-p34
version/zimbra collaboration/9.0.0-p4
version/zimbra collaboration/9.0.0-p5
version/zimbra collaboration/9.0.0-p6
version/zimbra collaboration/9.0.0-p7
version/zimbra collaboration/9.0.0-p7.1
version/zimbra collaboration/9.0.0-p8
version/zimbra collaboration/9.0.0-p9

CVE-2023-41106

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2023-41106?

How do I fix CVE-2023-41106?

Who is affected by CVE-2023-41106?

What type of vulnerability is CVE-2023-41106?

Is there a workaround for CVE-2023-41106?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2023-41106?

How do I fix CVE-2023-41106?

Who is affected by CVE-2023-41106?

What type of vulnerability is CVE-2023-41106?

Is there a workaround for CVE-2023-41106?