FILE Zimbra Archive Tar Arbitrary File Overwrite -2 (CVE-2022-41352)

Rule ID

1231873

Severity

Critical

Description

An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavisd via a cpio loophole that can lead to incorrect access to any other user accounts.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

File vulnerabilities

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2022-41352

T1202

T1564

Keywords

N/A

Date Created

2022/11/16

Last Updated

2025/08/06

This website uses cookies to ensure you get the best experience on our website.

Learn more