Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery Vulnerability - CVE-2020-7796

February 17, 2026 CRITICAL CVSS: 9.0 By VulnDaily

Affected Systems: Synacor Zimbra Collaboration Suite

auto-generated

Executive Summary

Synacor Zimbra Collaboration Suite (ZCS) contains a server-side request forgery vulnerability if WebEx zimlet installed and zimlet JSP is enabled.

CVSS Score: 9.0/10.0
Severity: CRITICAL

Affected Systems

Synacor Zimbra Collaboration Suite

Detection & Mitigation

Apply vendor patches as soon as available
Monitor for indicators of compromise
Review vendor advisories for specific guidance

References

External Resources & References

Vulnerability Databases

National Vulnerability Database Official NIST vulnerability details and CVSS scoring

MITRE CVE Dictionary Authoritative CVE identification and classification

Threat Intelligence & Search

Shodan Search Engine Find internet-exposed vulnerable systems

Exploit Database Public exploits and proof-of-concepts