A critical-severity vulnerability in Zimbra has been exploited in the wild to deploy a web shell on vulnerable servers.
The post Critical Zimbra Vulnerability Exploited One Day After PoC Release appeared first on SecurityWeek.
Zimbra Zero-Day Exploited to Hack Government Emails
Google says a Zimbra zero-day from earlier this year, CVE-2023-37580, was exploited in several campaigns to hack government emails.
The post Zimbra Zero-Day Exploited to Hack Government Emails appeared first on SecurityWeek.
Zimbra Patches Exploited Zero-Day Vulnerability
Zimbra has released patches for a cross-site scripting (XSS) vulnerability that has been exploited in malicious attacks.
The post Zimbra Patches Exploited Zero-Day Vulnerability appeared first on SecurityWeek.
Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day
Google researchers have discovered that a Zimbra zero-day vulnerability has been exploited in the wild, with users being advised to manually patch their installations.
The post Google Researchers Discover In-the-Wild Exploitation of Zimbra Zero-Day appeared first on SecurityWeek.