{"id":284330,"date":"2023-07-28T12:54:53","date_gmt":"2023-07-28T10:54:53","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=284330"},"modified":"2023-07-28T12:54:53","modified_gmt":"2023-07-28T10:54:53","slug":"zimbra-patcht-eine-0-day-xss-schwachstelle-cve-2023-38750","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2023\/07\/28\/zimbra-patcht-eine-0-day-xss-schwachstelle-cve-2023-38750\/","title":{"rendered":"Zimbra patcht eine 0-Day-XSS-Schwachstelle CVE-2023-38750"},"content":{"rendered":"<p>Jemand unter der Leserschaft, der die E-Mail- und Groupwarel\u00f6sung <a href=\"https:\/\/de.wikipedia.org\/wiki\/Zimbra\" target=\"_blank\" rel=\"noopener\">Zimbra<\/a> von Synacor Inc. im Einsatz hat. Gerade lese ich bei den Kollegen von <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/zimbra-patches-zero-day-vulnerability-exploited-in-xss-attacks\/\" target=\"_blank\" rel=\"noopener\">Bleeping Computer<\/a>, dass es dort ein 0-Day-Schwachstelle <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-38750\" target=\"_blank\" rel=\"noopener\">CVE-2023-38750<\/a> gibt, die XSS-Angriffe erm\u00f6glicht. Zimbra hat (2 Wochen nach Entdeckung der XSS-Schwachstelle, die bei Angriffen auf die E-Mail-Server der Zimbra Collaboration Suite (ZCS) ausgenutzt wird) Sicherheitsupdates ver\u00f6ffentlicht, die die Schwachstelle beheben.<br \/><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/zimbra-patches-zero-day-vulnerability-exploited-in-xss-attacks\/\" target=\"_blank\" rel=\"noopener\"><img decoding=\"async\" title=\"Zimbra CVE-2023-38750\" alt=\"Zimbra CVE-2023-38750\" src=\"https:\/\/i.postimg.cc\/FRQ6TcvC\/image.png\"\/><\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Jemand unter der Leserschaft, der die E-Mail- und Groupwarel\u00f6sung Zimbra von Synacor Inc. im Einsatz hat. Gerade lese ich bei den Kollegen von Bleeping Computer, dass es dort ein 0-Day-Schwachstelle CVE-2023-38750 gibt, die XSS-Angriffe erm\u00f6glicht. Zimbra hat (2 Wochen nach &hellip; <a href=\"https:\/\/borncity.com\/blog\/2023\/07\/28\/zimbra-patcht-eine-0-day-xss-schwachstelle-cve-2023-38750\/\">Weiterlesen <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7263,908,426],"tags":[4328],"class_list":["post-284330","post","type-post","status-publish","format-standard","hentry","category-cloud","category-internet","category-sicherheit","tag-sicherheit"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/284330","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=284330"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/284330\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=284330"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=284330"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=284330"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}