All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2022-27926
NONEKEVpublish date unavailable
CVSS / 10
// description
Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability by allowing an endpoint URL to accept parameters without sanitizing.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2023-04-03 00:00 UTC