CVE-2022-24682

Zimbra Webmail Cross-Site Scripting Vulnerability

Severity Score

6.1

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

*SSVC

Descriptions

An issue was discovered in the Calendar feature in Zimbra Collaboration Suite 8.8.x before 8.8.15 patch 30 (update 1), as exploited in the wild starting in December 2021. An attacker could place HTML containing executable JavaScript inside element attributes. This markup becomes unescaped, causing arbitrary markup to be injected into the document.

Se ha detectado un problema en la funcionalidad Calendar en Zimbra Collaboration Suite 8.8.x versiones anteriores a 8.8.15 parche 30 (actualización 1), como es explotado "in the wild" a partir de diciembre 2021. Un atacante podría colocar HTML que contenga JavaScript ejecutable dentro de los atributos de los elementos. Este marcado es convertido en unescaped, causando que el marcado arbitrario sea inyectado en el documento

Zimbra webmail clients running versions 8.8.15 P29 & P30 contain a XSS vulnerability that would allow attackers to steal session cookie files.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-02-09 CVE Reserved
2022-02-09 CVE Published
2022-02-25 Exploited in Wild
2022-03-11 KEV Due Date
2024-08-03 CVE Updated
2024-08-03 First Exploit
2024-10-25 EPSS Updated

CWE

CWE-116: Improper Encoding or Escaping of Output

CAPEC

References (5)

URL	Tag	Source

URL	Date	SRC
https://www.volexity.com/blog/2022/02/03/operation-emailthief-active-exploitation-of-zero-day-xss-vulnerability-in-zimbra	2024-08-03

URL	Date	SRC

URL	Date	SRC
https://blog.zimbra.com/2022/02/hotfix-available-5-feb-for-zero-day-exploit-vulnerability-in-zimbra-8-8-15	2023-08-08
https://wiki.zimbra.com/wiki/Security_Center	2023-08-08
https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P30	2023-08-08
https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories	2023-08-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				>= 8.8 < 8.8.15 Search vendor "Zimbra" for product "Collaboration" and version " >= 8.8 < 8.8.15"		-		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		-		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p1		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p10		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p11		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p12		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p13		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p14		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p15		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p16		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p17		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p18		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p19		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p2		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p20		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p21		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p22		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p23		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p24		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p25		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p26		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p27		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p28		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p29		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p3		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p4		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p5		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p6		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p7		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p8		Affected
Zimbra Search vendor "Zimbra"		Collaboration Search vendor "Zimbra" for product "Collaboration"				8.8.15 Search vendor "Zimbra" for product "Collaboration" and version "8.8.15"		p9		Affected