CVE-2025-71275

CVSS v3.1

9.8

Critical

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Zimbra Collaboration Suite (ZCS) version 8.8.15

Description A security issue exists in the Zimbra Collaboration Suite (ZCS) PostJournal service that allows unauthenticated attackers to execute arbitrary system commands. This is possible due to improper sanitization of the RCPT TO parameter when handling SMTP injection. Attackers can inject shell expansion syntax through the RCPT TO parameter to achieve remote code execution under the Zimbra service context. The vulnerable parameter is RCPT TO. The affected API endpoint is the SMTP service.

Recommendations Update to a newer version that contains a fix for this vulnerability.

Exploit

Fix

RCE

Command Injection

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-77CWE-78

Related Identifiers

CVE-2025-71275

Affected Products

Zimbra Collaboration Suite

CVE-2025-71275

Weakness Enumeration

Related Identifiers

Affected Products

References · 9