VDB
CVE-2023-38750
CVE-2023-38750
PUBLISHED
In Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41, 9 before 9.0.0 Patch 34, and 10 before 10.0.2, internal JSP and XML files can be exposed.
EPSS 0.28% · 52.0th percentile
Risk Scores
EPSS Score
0.28%
52.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| zimbra | zimbra | 8.8.15, 8.8.0, 8.8.15 |
| n/a | n/a | n/a |
Exploit Intelligence
Timeline
- Jul 26, 2023 CVE Published
- Aug 1, 2023 EPSS Score
- Sep 4, 2023 EPSS Score
- Oct 8, 2023 EPSS Score
- Nov 11, 2023 EPSS Score
- Dec 15, 2023 EPSS Score
- Jan 17, 2024 EPSS Score
- Feb 20, 2024 EPSS Score
- Mar 25, 2024 EPSS Score
- Apr 28, 2024 EPSS Score
- Jun 1, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
References
- https://wiki.zimbra.com/wiki/Security_Center url
- https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy url
- https://nvd.nist.gov/vuln/detail/CVE-2023-38750 advisory
- https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P41 advisory
- https://wiki.zimbra.com/wiki/Zimbra_Releases/10.0.2 advisory
- https://wiki.zimbra.com/wiki/Zimbra_Releases/9.0.0/P34 advisory