Zimbra Collaboration 8.8.x/9.x: sudo allows zimbra to run NGINX as root
CVE-2022-41347 Published on September 26, 2022

An issue was discovered in Zimbra Collaboration (ZCS) 8.8.x and 9.x (e.g., 8.8.15). The Sudo configuration permits the zimbra user to execute the NGINX binary as root with arbitrary parameters. As part of its intended functionality, NGINX can load a user-defined configuration file, which includes plugins in the form of .so files, which also execute as root.

NVD

Vulnerability Analysis

CVE-2022-41347 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Products Associated with CVE-2022-41347

Want to know whenever a new CVE is published for Zimbra Collaboration? stack.watch will email you.

Zimbra Collaboration

Exploit Probability

EPSS

0.16%

Percentile

36.21%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Zimbra Collaboration 8.8.x/9.x: sudo allows zimbra to run NGINX as rootCVE-2022-41347 Published on September 26, 2022

Vulnerability Analysis

Products Associated with CVE-2022-41347

Exploit Probability

Zimbra Collaboration 8.8.x/9.x: sudo allows zimbra to run NGINX as root
CVE-2022-41347 Published on September 26, 2022