Zimbra Fixes A Zero-Day Vulnerability Exploited in Attacks

Threat Level – Red | Vulnerability Report
Download PDF

The vulnerability (CVE-2023-37580) in Zimbra Collaboration Suite (ZCS) version 8.8.15 is a Cross-Site Scripting (XSS) flaw in the Zimbra Classic Web Client interface. Its impact is severe as it can compromise the confidentiality and integrity of the user’s data. The exploitation of this vulnerability has already been observed in targeted cyberattacks, posing significant risks to the affected systems and their users.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox