Zimbra developers released security updates to fix vulnerability that affects all versions of Zimbra. An attacker could exploit some of these vulnerabilities to trigger security restriction bypass and denial of service condition on the targeted system.

Security vulnerability is fixed in the following Zimbra versions:

• Zimbra Daffodil 10.1.10
• Zimbra Daffodil 10.0.16

Source: zimbra.com