CVE-2023-34192

⚠ KEVEPSS 90.0%

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability

Added to CISA KEV: 2/25/2025

Description

Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability that allows a remote authenticated attacker to execute arbitrary code via a crafted script to the /h/autoSaveDraft function.

Affected packages (0)

No package mapping in OSV.