Cve20207796 Zimbra Collaboration Suite ^new^ Full

An attacker sends a specially crafted HTTP request to the vulnerable Zimbra server. Because the server fails to properly sanitize the destination URL, it fulfills the request on behalf of the attacker. Internal Reconnaissance:

The Support Engineer’s Last Day

Zimbra Collaboration Suite (ZCS) versions before 8.8.15 Patch 7 How to Fix It The primary remediation is to cve20207796 zimbra collaboration suite full

: Added to the CISA Known Exploited Vulnerabilities (KEV) Catalog on February 17, 2026 . An attacker sends a specially crafted HTTP request