Skip to content
The Nexus
DossierENTITY

Zimbra

Coverage of Zimbra in the Nexus archive.

Earliest in view: Apr 24 · 13:35 UTCMost recent: Jul 11 · 06:45 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYJul 11 · 06:45 UTCTHE HACKER NEWS
    Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions

    Zimbra is urging customers to apply updates to address a critical security vulnerability in the Classic Web Client that could allow arbitrary code execution via stored cross-site scripting (XSS). The flaw could enable malicious scripts to run in user sessions through specially crafted emails and has not yet been assigned a CVE identifier.

  • SECURITYApr 24 · 13:35 UTCBLEEPING COMPUTER
    Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

    Over 10,000 Zimbra Collaboration Suite (ZCS) servers are exposed online and vulnerable to ongoing cross-site scripting (XSS) attacks. The security flaw allows attackers to exploit these servers through malicious scripts.