cbcvebase.
CVE-2022-37393
published 2022-08-16

CVE-2022-37393: Zimbra's sudo configuration permits the zimbra user to execute the zmslapd binary as root with arbitrary parameters. As part of its intended functionality…

PriorityP351high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
1.68%
74.1th percentile
Zimbra's sudo configuration permits the zimbra user to execute the zmslapd binary as root with arbitrary parameters. As part of its intended functionality, zmslapd can load a user-defined configuration file, which includes plugins in the form of .so files, which also execute as root.

Affected

20 ranges
VendorProductVersion rangeFixed in
synacorzimbra_server8.8.15.p34 – 8.8.15.p34
synacorzimbra_server9.0.0.p27 – 9.0.0.p27
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
zimbracollaboration
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.