Vulnerability Database

300,830

Total vulnerabilities in the database

CVE-2022-37393

Zimbra's sudo configuration permits the zimbra user to execute the zmslapd binary as root with arbitrary parameters. As part of its intended functionality, zmslapd can load a user-defined configuration file, which includes plugins in the form of .so files, which also execute as root.

  • Published: Aug 16, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2022-37393
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Software From Fixed in
zimbra / collaboration 9.0.0-p4 9.0.0-p4.x
zimbra / collaboration 9.0.0-p7 9.0.0-p7.x
zimbra / collaboration 8.8.15-p11 8.8.15-p11.x
zimbra / collaboration 8.8.15-p3 8.8.15-p3.x
zimbra / collaboration 8.8.15-p5 8.8.15-p5.x
zimbra / collaboration 8.8.15 8.8.15.x
zimbra / collaboration 8.8.15-p26 8.8.15-p26.x
zimbra / collaboration 8.7.6 8.7.6.x
zimbra / collaboration 8.7.7 8.7.7.x
zimbra / collaboration 8.7.9 8.7.9.x
zimbra / collaboration 8.7.10 8.7.10.x
zimbra / collaboration 8.7.11 8.7.11.x
zimbra / collaboration 8.7.11-p1 8.7.11-p1.x
zimbra / collaboration 8.7.11-p10 8.7.11-p10.x
zimbra / collaboration 8.7.11-p11 8.7.11-p11.x
zimbra / collaboration 8.7.11-p12 8.7.11-p12.x
zimbra / collaboration 8.7.11-p13 8.7.11-p13.x
zimbra / collaboration 8.7.11-p14 8.7.11-p14.x
zimbra / collaboration 8.7.11-p15 8.7.11-p15.x
zimbra / collaboration 8.7.11-p2 8.7.11-p2.x
zimbra / collaboration 8.7.11-p3 8.7.11-p3.x
zimbra / collaboration 8.7.11-p4 8.7.11-p4.x
zimbra / collaboration 8.7.11-p5 8.7.11-p5.x
zimbra / collaboration 8.7.11-p6 8.7.11-p6.x
zimbra / collaboration 8.7.11-p7 8.7.11-p7.x
zimbra / collaboration 8.7.11-p8 8.7.11-p8.x
zimbra / collaboration 8.7.11-p9 8.7.11-p9.x
zimbra / collaboration 8.8.0-beta1 8.8.0-beta1.x
zimbra / collaboration 8.8.2 8.8.2.x
zimbra / collaboration 8.8.3 8.8.3.x
zimbra / collaboration 8.8.4 8.8.4.x
zimbra / collaboration 8.8.6 8.8.6.x
zimbra / collaboration 8.8.7 8.8.7.x
zimbra / collaboration 8.8.8 8.8.8.x
zimbra / collaboration 8.8.8-p1 8.8.8-p1.x
zimbra / collaboration 8.8.8-p3 8.8.8-p3.x
zimbra / collaboration 8.8.8-p4 8.8.8-p4.x
zimbra / collaboration 8.8.8-p7 8.8.8-p7.x
zimbra / collaboration 8.8.9 8.8.9.x
zimbra / collaboration 8.8.9-p1 8.8.9-p1.x
zimbra / collaboration 8.8.9-p10 8.8.9-p10.x
zimbra / collaboration 8.8.9-p3 8.8.9-p3.x
zimbra / collaboration 8.8.10 8.8.10.x
zimbra / collaboration 8.8.10-p8 8.8.10-p8.x
zimbra / collaboration 8.8.11 8.8.11.x
zimbra / collaboration 8.8.11-p3 8.8.11-p3.x
zimbra / collaboration 8.8.11-p4 8.8.11-p4.x
zimbra / collaboration 8.8.11-p5 8.8.11-p5.x
zimbra / collaboration 8.8.12 8.8.12.x
zimbra / collaboration 8.8.12-p3 8.8.12-p3.x
zimbra / collaboration 8.8.12-p4 8.8.12-p4.x
zimbra / collaboration 8.8.15-p30 8.8.15-p30.x
zimbra / collaboration 8.8.15-p31 8.8.15-p31.x
zimbra / collaboration 8.8.15-p32 8.8.15-p32.x
zimbra / collaboration 8.8.15-p33 8.8.15-p33.x
zimbra / collaboration 8.8.15-p34 8.8.15-p34.x
zimbra / collaboration 9.0.0-p0 9.0.0-p0.x
zimbra / collaboration 9.0.0-p19 9.0.0-p19.x
zimbra / collaboration 9.0.0-p23 9.0.0-p23.x
zimbra / collaboration 9.0.0-p25 9.0.0-p25.x
zimbra / collaboration 9.0.0-p26 9.0.0-p26.x
zimbra / collaboration 9.0.0-p27 9.0.0-p27.x
zimbra / collaboration 9.0.0-p7.1 9.0.0-p7.1.x