Known Exploited Vulnerability: CVE-2018-6882

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability

CVE detail

Catalog version: 2026.06.03 Date added: 2022-04-19 Due date: 2022-05-10 CISA catalog

Vendor: Synacor

Product: Zimbra Collaboration Suite (ZCS)

Required action: Apply updates per vendor instructions.

Known ransomware campaign use: Known

CWEs

CWE-79 MITRE ↗

cvelogic Threat Intelligence