Vulnerabilities > Zimbra > Collaboration > 9.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-02 | CVE-2021-35209 | Server-Side Request Forgery (SSRF) vulnerability in Zimbra Collaboration An issue was discovered in ProxyServlet.java in the /proxy servlet in Zimbra Collaboration Suite 8.8 before 8.8.15 Patch 23 and 9.x before 9.0.0 Patch 16. | 7.5 |
| 2020-12-17 | CVE-2020-35123 | XXE vulnerability in Zimbra Collaboration 8.8.15/9.0.0 In Zimbra Collaboration Suite Network Edition versions < 9.0.0 P10 and 8.8.15 P17, there exists an XXE vulnerability in the saml consumer store extension, which is vulnerable to XXE attacks. | 4.0 |