Zimbra · Zimbra Collaboration · CVE-2016-3411
**Name of the Vulnerable Software and Affected Versions**
Zimbra Collaboration versions prior to 8.7.0
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
**Recommendations**
For versions prior to 8.7.0, update to version 8.7.0 or later to resolve the issue.