Synacor Zimbra Collaboration Suite (ZCS) contains an authentication bypass vulnerability in MailboxImportServlet. This vulnerability was chained with CVE-2022-27925 which allows for unauthenticated remote code execution. | Apply updates per vendor instructions.
Synacor Zimbra Collaboration Suite (ZCS)
Exploit
CVE-2022-37042
CISA KEV
Apply patch by 2022-09-01