CVE advisoryKnown Exploit
CVE-2020-7796
Zimbra Collaboration Suite Server-Side Request Forgery Vulnerability
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A vulnerability in Zimbra Collaboration Suite, when the WebEx zimlet is installed and zimlet JSP is enabled, allows for server-side request forgery. This can lead to unauthorized access to internal systems and data, posing a significant business risk.