Vulnerability Description
An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Synacor | Zimbra Collaboration Suite | 9.0.0 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/169458/Zimbra-Collaboration-Suite-TAR-Path-ExploitThird Party AdvisoryVDB Entry
- https://forums.zimbra.org/viewtopic.php?t=71153&p=306532MitigationVendor Advisory
- https://wiki.zimbra.com/wiki/Security_CenterPatchRelease NotesVendor Advisory
- https://wiki.zimbra.com/wiki/Zimbra_Security_AdvisoriesVendor Advisory
- https://www.secpod.com/blog/unpatched-rce-bug-in-zimbra-collaboration-suite-explThird Party Advisory
- http://packetstormsecurity.com/files/169458/Zimbra-Collaboration-Suite-TAR-Path-ExploitThird Party AdvisoryVDB Entry
- https://forums.zimbra.org/viewtopic.php?t=71153&p=306532MitigationVendor Advisory
- https://wiki.zimbra.com/wiki/Security_CenterPatchRelease NotesVendor Advisory
- https://wiki.zimbra.com/wiki/Zimbra_Security_AdvisoriesVendor Advisory
- https://www.secpod.com/blog/unpatched-rce-bug-in-zimbra-collaboration-suite-explThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-US Government Resource
FAQ
What is CVE-2022-41352?
CVE-2022-41352 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) ...
How severe is CVE-2022-41352?
CVE-2022-41352 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-41352?
Check the references section above for vendor advisories and patch information. Affected products include: Synacor Zimbra Collaboration Suite.