zimbra collaboration CVE-2022-37042 is a vulnerability in Zimbra Collaboration
Published on August 12, 2022

Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP archive and extracts files from it. By bypassing authentication (i.e., not having an authtoken), an attacker can upload arbitrary files to the system, leading to directory traversal and remote code execution. NOTE: this issue exists because of an incomplete fix for CVE-2022-27925.

Vendor Advisory Vendor Advisory NVD

Known Exploited Vulnerability

This Zimbra Collaboration (ZCS) Authentication Bypass Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Zimbra Collaboration (ZCS) contains an authentication bypass vulnerability in MailboxImportServlet. This vulnerability was chained with CVE-2022-27925 which allows for unauthenticated remote code execution.

The following remediation steps are recommended / required by September 1, 2022: Apply updates per vendor instructions.

Vulnerability Analysis

CVE-2022-37042 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. It has the highest possible exploitability rating (3.9). The potential impact of an exploit of this vulnerability is considered to be critical as this vulnerability has a high impact to the confidentiality, integrity and availability of this component.

What is a Directory traversal Vulnerability?

The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

CVE-2022-37042 has been classified to as a Directory traversal vulnerability or weakness.


Products Associated with CVE-2022-37042

You can be notified by stack.watch whenever vulnerabilities like CVE-2022-37042 are published in these products:

Zimbra Collaboration
 

What versions of Collaboration are vulnerable to CVE-2022-37042?