Zimbra Collaboration prior to 8.7.0 allows remote malicious users to conduct deserialization attacks via unspecified vectors, aka bug 102276.
synacor zimbra collaboration suite