Vulnerability-Lookup

CNVD-2020-23193

Vulnerability from cnvd - Published: 2020-04-17

Title

Zimbra zm-mailbox存在未明漏洞

Description

Zimbra zm-mailbox是美国Zimbra公司的一款邮箱管理工具。 Zimbra zm-mailbox 8.8.15.p8之前版本中的cs/service/account/AutoCompleteGal.java文件存在安全漏洞，攻击者可利用该漏洞请求任意GAL账户。

Severity

中

Formal description

厂商尚未提供漏洞修复方案，请关注厂商主页更新： https://github.com/Zimbra/zm-mailbox

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-10194

Impacted products

Name
Zimbra zm-mailbox <8.8.15.p8

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-10194"
    }
  },
  "description": "Zimbra zm-mailbox\u662f\u7f8e\u56fdZimbra\u516c\u53f8\u7684\u4e00\u6b3e\u90ae\u7bb1\u7ba1\u7406\u5de5\u5177\u3002\n\nZimbra zm-mailbox 8.8.15.p8\u4e4b\u524d\u7248\u672c\u4e2d\u7684cs/service/account/AutoCompleteGal.java\u6587\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u8bf7\u6c42\u4efb\u610fGAL\u8d26\u6237\u3002",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u63d0\u4f9b\u6f0f\u6d1e\u4fee\u590d\u65b9\u6848\uff0c\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\u66f4\u65b0\uff1a\r\nhttps://github.com/Zimbra/zm-mailbox",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-23193",
  "openTime": "2020-04-17",
  "products": {
    "product": "Zimbra zm-mailbox \u003c8.8.15.p8"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-10194",
  "serverity": "\u4e2d",
  "submitTime": "2020-03-23",
  "title": "Zimbra zm-mailbox\u5b58\u5728\u672a\u660e\u6f0f\u6d1e"
}

CVE-2020-10194 (GCVE-0-2020-10194)

Vulnerability from cvelistv5 – Published: 2020-03-20 20:30 – Updated: 2024-08-04 10:58

Summary

cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from the intended behavior in which the domain of the authenticated user must match the domain of the galsync account in the request.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

3 references

URL	Tags
https://github.com/Zimbra/zm-mailbox/compare/8.8.…	x_refsource_MISC
https://github.com/Zimbra/zm-mailbox/commit/1df44…	x_refsource_MISC
https://github.com/Zimbra/zm-mailbox/pull/1020	x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T10:58:40.270Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/Zimbra/zm-mailbox/compare/8.8.15.p7...8.8.15.p8"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/Zimbra/zm-mailbox/commit/1df440e0efa624d1772a05fb6d397d9beb4bda1e"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/Zimbra/zm-mailbox/pull/1020"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from the intended behavior in which the domain of the authenticated user must match the domain of the galsync account in the request."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-03-20T20:30:52.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/Zimbra/zm-mailbox/compare/8.8.15.p7...8.8.15.p8"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/Zimbra/zm-mailbox/commit/1df440e0efa624d1772a05fb6d397d9beb4bda1e"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/Zimbra/zm-mailbox/pull/1020"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-10194",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from the intended behavior in which the domain of the authenticated user must match the domain of the galsync account in the request."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/Zimbra/zm-mailbox/compare/8.8.15.p7...8.8.15.p8",
              "refsource": "MISC",
              "url": "https://github.com/Zimbra/zm-mailbox/compare/8.8.15.p7...8.8.15.p8"
            },
            {
              "name": "https://github.com/Zimbra/zm-mailbox/commit/1df440e0efa624d1772a05fb6d397d9beb4bda1e",
              "refsource": "MISC",
              "url": "https://github.com/Zimbra/zm-mailbox/commit/1df440e0efa624d1772a05fb6d397d9beb4bda1e"
            },
            {
              "name": "https://github.com/Zimbra/zm-mailbox/pull/1020",
              "refsource": "CONFIRM",
              "url": "https://github.com/Zimbra/zm-mailbox/pull/1020"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-10194",
    "datePublished": "2020-03-20T20:30:52.000Z",
    "dateReserved": "2020-03-06T00:00:00.000Z",
    "dateUpdated": "2024-08-04T10:58:40.270Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-23193

CVE-2020-10194 (GCVE-0-2020-10194)

Tags

Sightings

Nomenclature