An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 8.8.15. XSS can occur, via one of attributes of the webmail /h/ endpoint, to execute arbitrary JavaScript code, leading to information disclosure.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-06-15T00:00:00
Updated: 2024-08-02T10:49:08.984Z
Reserved: 2023-01-20T00:00:00
Link: CVE-2023-24031
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-06-15T21:15:09.550
Modified: 2023-06-27T01:23:52.320
Link: CVE-2023-24031
Redhat
No data.