Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability in the Calendar feature that allows an attacker to execute arbitrary code.
// weekly digest
// weekly digest
// weekly digest
2022-02-21 00:00 UTC 2022-02-27 23:59 UTC
// total
0
// critical
0
// high
0
// medium
0
// low
0
// new kev
6
// top critical
No CRITICAL CVEs published this week.
// top high
No HIGH CVEs published this week.
// new kev additions
Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability in the Calendar feature that allows an attacker to execute arbitrary code.
A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory.
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory.
Microsoft Windows allow remote attackers to execute arbitrary code via a crafted OLE object.
Malicious actors can pass step checks and potentially change the configuration of Zabbix Frontend.
Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML.