📦

collaboration_suite

Vendor: zimbra

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 2 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 2.82% Exploit Prob.

Latest CVE CVE-2020-12339 Feb 17

Security Vulnerability Index

Page 1 / 1

8.8 CVSS

CVE-2020-12339

Insufficient control flow management in the API for the Intel(R) Collaboration Suite for WebRTC before version 4.3.1 may allow an authenticated user to potentially enable escalation of privilege via network access.

EPSS: 0.51%

Severity: HIGH

Feb 17, 2021

4.3 CVSS

CVE-2010-0881

Unspecified vulnerability in the User Interface Components in Oracle Collaboration Suite 10.1.2.4 allows remote attackers to affect integrity via unknown vectors.

EPSS: 0.81%

Severity: MEDIUM

Apr 14, 2010

4.0 CVSS

CVE-2008-4016

Unspecified vulnerability in the Collaborative Workspaces component in Oracle Collaboration Suite 10.1.2 allows remote authenticated users to affect confidentiality via unknown vectors.

EPSS: 0.25%

Severity: MEDIUM

Jan 14, 2009

9.0 CVSS

CVE-2008-1814

Unspecified vulnerability in the Oracle Secure Enterprise Search or Ultrasearch component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3; Application Server 9.0.4.3 and 10.1.2.2; and Oracle Collaboration Suite 10.1.2; has unknown impact and remote attack vectors, aka DB04.

EPSS: 1.39%

Severity: HIGH

Apr 16, 2008

4.3 CVSS

CVE-2008-1226

Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration Suite (ZCS) 4.0.3, 4.5.6, and possibly other versions before 4.5.10 allow remote attackers to inject arbitrary web script or HTML via an e-mail attachment, possibly involving a (1) .jpg or (2) .gif image attachment.

EPSS: 0.51%

Severity: MEDIUM

Mar 10, 2008

10.0 CVSS

CVE-2008-0340

Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 have unknown impact and remote attack vectors, related to the (1) Advanced Queuing component (DB02) and (2) Oracle Spatial component (DB04).

EPSS: 1.72%

Severity: HIGH

Jan 17, 2008

10.0 CVSS

CVE-2008-0343

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has unknown impact and remote attack vectors, aka DB06.

EPSS: 1.72%

Severity: HIGH

Jan 17, 2008

10.0 CVSS

CVE-2008-0349

Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.15 and 8.49.07 has unknown impact and remote attack vectors, aka PSE02.

EPSS: 1.72%

Severity: HIGH

Jan 17, 2008

10.0 CVSS

CVE-2008-0347

Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10.1.2; Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; and Application Server 9.0.4.3 and 10.1.2.0.2; has unknown impact and local attack vectors, aka OCS01. NOTE: Oracle has not disputed a reliable claim that this issue is related to WKSYS schema privileges.

EPSS: 2.46%

Severity: HIGH

Jan 17, 2008

10.0 CVSS

CVE-2008-0348

Multiple unspecified vulnerabilities in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.22.18, 8.48.15, and 8.49.07 have unknown impact and remote attack vectors, aka (1) PSE01, (2) PSE03, and (3) PSE04.

EPSS: 1.72%

Severity: HIGH

Jan 17, 2008

Displaying 10 of 1 Total Entries

Total 1 Sections