Zimbra Collaboration Open Source 8.8.15 does not encrypt the initial-login randomly created password (from the "zmprove ca" command). It is visible in cleartext on port UDP 514 (aka the syslog port). NOTE: a third party reports that this cannot be reproduced.
History

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00764}

epss

{'score': 0.0171}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-07-11T00:00:00

Updated: 2024-08-03T07:39:50.523Z

Reserved: 2022-06-05T00:00:00

Link: CVE-2022-32294

cve-icon Vulnrichment

Updated: 2024-08-03T07:39:50.523Z

cve-icon NVD

Status : Modified

Published: 2022-07-11T03:15:07.810

Modified: 2024-11-21T07:06:07.397

Link: CVE-2022-32294

cve-icon Redhat

No data.