Search found 23 matches
- Wed Mar 04, 2020 9:36 am
- Forum: Administrators
- Topic: Zimbra SSRF CVE-2020-7796
- Replies: 1
- Views: 1115
Hi Does anyone have more information on SSRF vulnerability CVE-2020-7796, besides the fact that it was fixed in 8.8.15 patch 7? CVE description: Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled. What is the precise scope and ...
- Thu Feb 13, 2020 8:10 am
- Forum: Installation and Upgrade
- Topic: Issue after upgrading to 8.8.15
- Replies: 24
- Views: 15554
We and one of our customers had this issue. In our cases, the symptoms were that web client sessions generated a "Server Error 500" for the users, but that IMAP and other non web-ui access methods continued to function. Zimbra Support have identified the root cause and given us a bug numb...