Vulnerabilities > CVE-2022-27926 - Unspecified vulnerability in Zimbra Collaboration 9.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
A reflected cross-site scripting (XSS) vulnerability in the /public/launchNewWindow.jsp component of Zimbra Collaboration (aka ZCS) 9.0 allows unauthenticated attackers to execute arbitrary web script or HTML via request parameters.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |