Cve20207796 Zimbra Collaboration Suite _hot_ Full -

Attackers can exploit this when both the WebEx Zimlet is installed and its JSP functionality is enabled.

rm -f /opt/zimbra/zimlets-deployed/com_zimbra_webex/httpPost.jsp Use code with caution. Copied to clipboard

While some sources list a 6.8 medium severity, deeper analysis indicates a potential for critical impact (CVSS 9.8) if it allows full read/write access to internal services. Potential Impact

The JSP shell is uploaded to /public/evil.jsp . Maya accesses it directly: https://mail.logi-core.com/public/evil.jsp . A reverse shell connects back to her laptop. cve20207796 zimbra collaboration suite full

A successful exploit of CVE-2020-7796 can lead to severe consequences for an organization:

file=../../../../../../../../opt/zimbra/bin/zmcontrol&cmd=status&ext=foo

CVE-2020-7796: Deep Dive into the Zimbra Collaboration Suite SSRF Vulnerability Attackers can exploit this when both the WebEx

In some scenarios, SSRF can be a stepping stone to remote code execution (RCE) or further network pivot attacks. Remediation and Patching

It can lead to full compromise of confidential data or unauthorized access to internal services. Potential Impact on Organizations

: Immediately upgrade Zimbra Collaboration Suite to version 8.8.15 Patch 7 or later . Download the patch from the official Zimbra website and follow the standard upgrade procedures. Potential Impact The JSP shell is uploaded to /public/evil

CVE-2020-7796 is a Server-Side Request Forgery (SSRF) vulnerability present in Zimbra Collaboration Suite (ZCS) versions prior to 8.8.15 Patch 7 . The vulnerability exists specifically within the "WebEx zimlet" component of ZCS.

CVE-2020-7796 is a critical security vulnerability affecting the Zimbra Collaboration Suite (ZCS). The flaw allows an unauthenticated, remote attacker to execute arbitrary code on the affected server. This vulnerability arises from improper input sanitization in the unrar binary utility used by the Amavis spam/antivirus scanning service.

Attackers can intercept response contents from internal services to leak sensitive data back to external infrastructure. Affected Configurations