CVE advisoryKnown Exploit
CVE-2022-37042
Zimbra Collaboration Suite Authentication Bypass and Remote Code Execution
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
Zimbra Collaboration Suite is affected by a vulnerability allowing unauthenticated attackers to upload arbitrary files, potentially leading to directory traversal and remote code execution. This poses a business risk of unauthorized system access and data compromise.