← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-9621 — Actively Exploited: Zimbra Collaboration Suite (ZCS) (Synacor)

Synacor Zimbra Collaboration Suite (ZCS) contains a server-side request forgery (SSRF) vulnerability via the ProxyServlet component.

CVE IDCVE-2019-9621
VendorSynacor
ProductZimbra Collaboration Suite (ZCS)
Vulnerability nameSynacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery (SSRF) Vulnerability
Date added2025-07-07
Remediation due2025-07-28
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionSynacor Zimbra Collaboration Suite (ZCS) contains a server-side request forgery (SSRF) vulnerability via the ProxyServlet component.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →