{"id":"CVE-2018-6882","details":"Cross-site scripting (XSS) vulnerability in the ZmMailMsgView.getAttachmentLinkHtml function in Zimbra Collaboration Suite (ZCS) before 8.7 Patch 1 and 8.8.x before 8.8.7 might allow remote attackers to inject arbitrary web script or HTML via a Content-Location header in an email attachment.","modified":"2026-07-08T05:52:33.725385722Z","published":"2018-03-27T16:29:00.530Z","database_specific":{"unresolved_ranges":[{"source":"CPE_RANGE","vendor_product":"synacor:zimbra_collaboration_suite","cpes":["cpe:2.3:a:synacor:zimbra_collaboration_suite:*:*:*:*:*:*:*:*"],"extracted_events":[{"fixed":"8.7.0"},{"fixed":"8.7.0"},{"fixed":"8.7.0"},{"fixed":"8.7.0"}]},{"vendor_product":"synacor:zimbra_collaboration_suite","cpes":["cpe:2.3:a:synacor:zimbra_collaboration_suite:8.7.0:-:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.0:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.1:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"8.7.0-NA"},{"last_affected":"8.7.0-NA"},{"introduced":"8.7.0-NA"},{"last_affected":"8.7.0-NA"},{"introduced":"8.7.0-NA"},{"last_affected":"8.7.0-NA"},{"introduced":"8.7.0-NA"},{"last_affected":"8.7.0-NA"},{"introduced":"8.8.0"},{"last_affected":"8.8.0"},{"introduced":"8.8.0"},{"last_affected":"8.8.0"},{"introduced":"8.8.0"},{"last_affected":"8.8.0"},{"introduced":"8.8.0"},{"last_affected":"8.8.0"},{"introduced":"8.8.1"},{"last_affected":"8.8.1"},{"introduced":"8.8.1"},{"last_affected":"8.8.1"},{"introduced":"8.8.1"},{"last_affected":"8.8.1"},{"introduced":"8.8.1"},{"last_affected":"8.8.1"}],"source":"CPE_STRING"}]},"references":[{"type":"WEB","url":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-6882"},{"type":"ADVISORY","url":"http://seclists.org/fulldisclosure/2018/Mar/52"},{"type":"ADVISORY","url":"http://www.securityfocus.com/archive/1/541891/100/0/threaded"},{"type":"ADVISORY","url":"https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories"},{"type":"REPORT","url":"https://bugzilla.zimbra.com/show_bug.cgi?id=108786"},{"type":"REPORT","url":"https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.7"},{"type":"EVIDENCE","url":"https://www.securify.nl/advisory/SFY20180101/cross-site-scripting-vulnerability-in-zimbra-collaboration-suite-due-to-the-way-it-handles-attachment-links.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/zimbra/zm-build","events":[{"introduced":"12157665dea3a952abb5b2b547f488a9cd438184"},{"last_affected":"d7010a6f7044a10b5ed191dd2a4cf06d8feb8a47"}],"database_specific":{"cpe":["cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.2:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.3:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.4:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.6:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"8.8.2"},{"last_affected":"8.8.2"},{"introduced":"8.8.3"},{"last_affected":"8.8.3"},{"introduced":"8.8.4"},{"last_affected":"8.8.4"},{"introduced":"8.8.6"},{"last_affected":"8.8.6"}],"source":"CPE_STRING"}}],"versions":["8.8.2","8.8.3","8.8.4","8.8.6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-6882.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/zimbra/zm-mailbox","events":[{"introduced":"afae9b3becf263ddb6f7a7bfb0822b1bcfe17d07"},{"last_affected":"831c6bd2261fe045c881eeff94194a6f6556ec20"}],"database_specific":{"cpe":["cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.2:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.3:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.4:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.5:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.6:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"8.8.2"},{"last_affected":"8.8.2"},{"introduced":"8.8.3"},{"last_affected":"8.8.3"},{"introduced":"8.8.4"},{"last_affected":"8.8.4"},{"introduced":"8.8.5"},{"last_affected":"8.8.5"},{"introduced":"8.8.6"},{"last_affected":"8.8.6"}],"source":"CPE_STRING"}}],"versions":["8.8.2","8.8.3","8.8.4","8.8.5","8.8.6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-6882.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/zimbra/zm-zcs","events":[{"introduced":"42ce75eee94a16498a135ef2643dbbb4fe460d9b"},{"last_affected":"3a921295acba2d5be59938abd998ce170245b8c3"}],"database_specific":{"cpe":["cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.2:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.3:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.4:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.5:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.6:*:*:*:*:*:*:*"],"extracted_events":[{"introduced":"8.8.2"},{"last_affected":"8.8.2"},{"introduced":"8.8.3"},{"last_affected":"8.8.3"},{"introduced":"8.8.4"},{"last_affected":"8.8.4"},{"introduced":"8.8.5"},{"last_affected":"8.8.5"},{"introduced":"8.8.6"},{"last_affected":"8.8.6"}],"source":"CPE_STRING"}}],"versions":["8.8.2","8.8.3","8.8.4","8.8.5","8.8.6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-6882.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/zimbra/zm-zcs-lib","events":[{"introduced":"0aec81ccc8c6dcbf79b0fe8031b85add3f64c72d"},{"last_affected":"49d0dcda47d6f88d1f9a05d5dbc9dc4a0225a7ee"}],"database_specific":{"extracted_events":[{"introduced":"8.8.2"},{"last_affected":"8.8.2"},{"introduced":"8.8.3"},{"last_affected":"8.8.3"},{"introduced":"8.8.4"},{"last_affected":"8.8.4"},{"introduced":"8.8.5"},{"last_affected":"8.8.5"},{"introduced":"8.8.6"},{"last_affected":"8.8.6"}],"source":"CPE_STRING","cpe":["cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.2:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.3:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.4:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.5:*:*:*:*:*:*:*","cpe:2.3:a:synacor:zimbra_collaboration_suite:8.8.6:*:*:*:*:*:*:*"]}}],"versions":["8.8.2","8.8.3","8.8.4","8.8.5","8.8.6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-6882.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}