CVE-2019-9670 Scanner
Detects 'XML External Entity (XXE)' vulnerability in Zimbra Collaboration Suite (ZCS) affects v. 8.7.x before 8.7.11p10.
Short Info
Level
Critical
Type
Single Scan
Can be used by
Asset Owner
Estimated Time
15 sec
Scan only one
Domain, Ipv4
Parent Category
CVE-2019-9670 Scanner Detail
The Synacor Zimbra Collaboration Suite is an extensive and robust productivity suite that is designed to meet the needs of businesses of all sizes. It is used by companies to improve inter-company communication and collaboration, and offers various features such as email, calendaring, file-sharing, video-conferencing and instant messaging. With the rise of remote working and the need for virtual teams, the Zimbra Collaboration Suite is becoming increasingly popular.
However, even with its extensive functionality, the Zimbra Collaboration Suite is not invulnerable to cyber-attacks. One such vulnerability that has been detected in this software is the CVE-2019-9670, an XML External Entity injection (XXE) vulnerability that affects mailboxd components before the 8.7.11p10-version.
When this vulnerability is exploited, an attacker gains the ability to read arbitrary files on the system leading to sensitive data leaks. By using specially crafted XML documents, these attackers can make a request to the mailboxd component, tricking it into executing the desired files. At this point, sensitive information could be stolen or hijacked, leading to potential data breaches or espionage.
In conclusion, staying informed and ahead of potential vulnerabilities to digital assets is critical for organizations today. It is not enough to merely remain vigilant, as threats continue to evolve and advance. With securityforeveryone.com, however, businesses can easily and quickly stay up-to-date on any existing or potential vulnerabilities. The platform's pro features deliver a comprehensive range of security solutions that are tailored to meet the needs of each organization. Therefore, it is imperative for any business using digital assets to invest in such applications to ensure maximum security of data and assets.
REFERENCES
- http://packetstormsecurity.com/files/152487/Zimbra-Collaboration-Autodiscover-Servlet-XXE-ProxyServlet-SSRF.html
- http://www.rapid7.com/db/modules/exploit/linux/http/zimbra_xxe_rce
- https://bugzilla.zimbra.com/show_bug.cgi?id=109129
- https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
- https://www.exploit-db.com/exploits/46693/
control security posture