Conversation
AttackerKB
attackerkb
New assessment for topic: CVE-2025-25065
Topic description: "SSRF vulnerability in the RSS feed parser in Zimbra Collaboration 9.0.0 before Patch 43, 10.0.x before 10.0.12, and 10.1.x before 10.1.4 allows unauthorized redirection to internal network endpoints. ..."
"On the 17th December 2024, Zimbra released an [advisory](https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.4#Security_Fixes) warning that Zimbra versions before 10.1.4 were susceptible to Server-Side Request Forgery (SSRF) via the RSS feed parser ..."
Link: https://attackerkb.com/assessments/3a9053d9-8891-4e66-8d99-af387e965048
Topic description: "SSRF vulnerability in the RSS feed parser in Zimbra Collaboration 9.0.0 before Patch 43, 10.0.x before 10.0.12, and 10.1.x before 10.1.4 allows unauthorized redirection to internal network endpoints. ..."
"On the 17th December 2024, Zimbra released an [advisory](https://wiki.zimbra.com/wiki/Zimbra_Releases/10.1.4#Security_Fixes) warning that Zimbra versions before 10.1.4 were susceptible to Server-Side Request Forgery (SSRF) via the RSS feed parser ..."
Link: https://attackerkb.com/assessments/3a9053d9-8891-4e66-8d99-af387e965048
0
0
0