Cve20207796 Zimbra Collaboration Suite Full 'link' Jun 2026

October 14, 2020 (Publication Date) Severity: Critical (CVSS 9.8) Vendor: Zimbra (Synacor) Product: Zimbra Collaboration Suite (ZCS)

: On your server (as root), refresh your package repositories: # For Ubuntu/Debian apt-get update Use code with caution. Copied to clipboard Install the Patch apt-get upgrade zimbra-patch Use code with caution. Copied to clipboard Restart Services : Switch to the zimbra user and restart the control system: su - zimbra zmcontrol restart Use code with caution. Copied to clipboard Immediate Mitigation (If Patching is Delayed) If you cannot upgrade immediately, consider the following: Disable the WebEx Zimlet cve20207796 zimbra collaboration suite full

: Look for unusual outbound connections or suspicious requests in your Zimbra and proxy logs. Zimbra Collaboration Suite SSRF (CVE-2020-7796) - Acunetix October 14, 2020 (Publication Date) Severity: Critical (CVSS

CVE-2020-7796 is a critical vulnerability in the Zimbra Collaboration Suite that exposes millions of users worldwide to potential cyber threats. The vulnerability can be exploited by an attacker to inject arbitrary JavaScript code into the application, leading to the theft of sensitive user data or other malicious activities. To mitigate the risks, users should upgrade to patched versions of the Collaboration Suite and implement additional security measures, such as disabling autocomplete, implementing a WAF, monitoring user activity, and educating users about the risks associated with the vulnerability. Copied to clipboard Immediate Mitigation (If Patching is

Upgrade to Zimbra Collaboration 8.8.15 Patch 7 or later . This version contains the necessary security fixes for this SSRF flaw.

To mitigate the risks associated with CVE-2020-7796, Zimbra has released patches for affected versions of the Collaboration Suite. Users can upgrade to version 8.8.15 Patch 7 or 9.0.0 Patch 4 to fix the vulnerability. Additionally, administrators can implement several security measures to reduce the risk of exploitation: