admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-12 02:04:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-240xx/CVE-2023-24030.json

24 lines
953 B
JSON
Raw Normal View History

Auto-Update: 2023-06-15T22:00:27.414653+00:00
2023-06-15 22:00:30 +00:00
{
"id": "CVE-2023-24030",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-15T21:15:09.510",
Auto-Update: 2023-06-16T04:00:27.602280+00:00
2023-06-16 04:00:31 +00:00
"lastModified": "2023-06-16T03:19:08.410",
"vulnStatus": "Awaiting Analysis",
Auto-Update: 2023-06-15T22:00:27.414653+00:00
2023-06-15 22:00:30 +00:00
"descriptions": [
{
"lang": "en",
"value": "An open redirect vulnerability exists in the /preauth Servlet in Zimbra Collaboration Suite through 9.0 and 8.8.15. To exploit the vulnerability, an attacker would need to have obtained a valid zimbra auth token or a valid preauth token. Once the token is obtained, an attacker could redirect a user to any URL if url sanitisation is bypassed in incoming requests. NOTE: this is similar, but not identical, to CVE-2021-34807."
}
],
"metrics": {},
"references": [
{
"url": "https://wiki.zimbra.com/wiki/Security_Center",
"source": "cve@mitre.org"
},
{
"url": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue Copy Permalink