claytonvantol.us
SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2022-24682-synacor-zimbra-collaborate-suite-zcs.log

CVE-2022-24682 — Synacor Zimbra Collaborate Suite (ZCS) Cross-Site Scripting Vulnerability

2022-02-25 • CISA Known Exploited Vulnerability

[event] Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability in the Calendar feature that allows an attacker to execute arbitrary code.

> AFFECTED SOFTWARE

Field Value
Vendor Synacor
Product Zimbra Collaborate Suite (ZCS)
CWE CWE-79, CWE-116
CVE ID CVE-2022-24682
Date Added 2022-02-25
Due Date 2022-03-11
Ransomware Campaign Known — this vulnerability has been leveraged in ransomware campaigns

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-03-11

> REFERENCES

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:14 UTC