Cve20207796 Zimbra Collaboration Suite Full Fixed

CVE-2020-7796 is a critical Server-Side Request Forgery (SSRF) vulnerability in the Zimbra Collaboration Suite (ZCS). It primarily affects versions of ZCS prior to 8.8.15 Patch 7. Technical Vulnerability Overview Vulnerability Type: Server-Side Request Forgery (SSRF).

Integrity Checks: Administrators should scan the Zimbra installation directories (specifically /opt/zimbra/jetty/webapps/zimbra/public/ and similar directories) for unexpected .jsp files or files with timestamps that do not align with the installation date.

Network Segmentation: Restrict access to the Zimbra administrative ports (ports 7071 and 9071) to trusted IP addresses only. While the exploit could work over standard ports in some cases, restricting admin access is a critical defense-in-depth strategy.

5.2 Mitigation Steps (If Patching is Delayed)

If immediate patching is not possible, the following mitigations are recommended: cve20207796 zimbra collaboration suite full

Mitigation and Patching

, requiring organizations to remediate it promptly due to active exploitation in the wild. National Institute of Standards and Technology (.gov) Vulnerability Overview Vulnerability Type: Server-Side Request Forgery (SSRF) (CWE-918). (CVSS v3.1 score of cve20207796 zimbra collaboration suite full

An attacker can exploit this vulnerability without any prior privileges or user interaction. Successful exploitation can lead to: cve20207796 zimbra collaboration suite full

POST /service/extension/UserServlet HTTP/1.1
Host: target.zimbra.com
Content-Type: application/x-www-form-urlencoded