CVE-2025-32354 | Zimbra Collaboration Suite up to 10.1 Webmail graphql cross-site request forgery

A vulnerability classified as problematic was found in Zimbra Collaboration Suite up to 10.1. Affected by this vulnerability is an unknown functionality of the file /service/extension/graphql of the component Webmail. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2025-32354. The attack can be launched remotely. There is no exploit available.VulDB Recent EntriesRead More