CNNVD-202510-2729 Information
CNNVD ID
CNNVD-202510-2729
Related CVE
- CNNVD Published: 2025-10-21
Description (Chinese)
Zimbra Collaboration是Zimbra公司的一个开源企业级电子邮件与协作平台,支持邮件、日历、文档管理及团队协作功能。 Zimbra Collaboration 10.1.12之前版本存在代码问题漏洞,该漏洞源于聊天代理配置不当,可能导致服务端请求伪造。
Description (English)
Zimbra Collaboration is an open-source enterprise e-mail and collaboration platform for Zimbra to support mail, calendar, document management and teamwork functions. Prior to Zimbra Collaboration 10.1.12 there was a code gap, which stemmed from the inappropriate configuration of chat agents, which could lead to the forgery of service requests.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
Zimbra
Published
2025-10-21
Last Modified
2026-02-24
References
https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.12 https://blog.zimbra.com/2025/10/patch-release-update-zimbra-10-1-12/ https://wiki.zimbra.com/wiki/Security_Center https://access.redhat.com/security/cve/cve-2025-62763
Patch
https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.12
Share on: