Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Written By Auto Tech Monday, 6 October 2025 Add Comment

October 06, 2025 at 11:31AM

A now patched security vulnerability in Zimbra Collaboration was exploited as a zero-day earlier this year in cyber attacks targeting the Brazilian military. Tracked as CVE-2025-27915 (CVSS score: 5.4), the vulnerability is a stored cross-site scripting (XSS) vulnerability in the Classic Web Client that arises as a result of insufficient sanitization of HTML content in ICS calendar files,

from The Hacker News https://ift.tt/IBCtbNs

{ads}

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

0 Response to "Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads