What the Vuln: Zimbra
By A Mystery Man Writer
Description
What the Vuln is a series where our offensive security experts and hackers deep dive and zero-in on one specific vulnerability that plagues organizations.
Zimbra 0-day used to target international government organizations
Zimbra Collaboration XSS Vulnerability: Be Careful If You're Using Zimbra Email
Business email platform Zimbra patches memcached injection flaw that imperils user credentials
Bishop Fox on LinkedIn: #whatthevuln #cybersecurity #livestream
Shadowserver on X: We started reporting out Zimbra Collaboration Suite instances likely vulnerable to CVE-2022-37042 auth-bypass RCE, a vuln that is exploited in the wild. 26,854 out of 33,733 (79.6%) instances found
Unpatched vulnerability on Zimbra (again!) - symlink abuse in cpio : r/netsec
Bishop Fox What the Vuln: EDR Bypass with LolBins
Javier Rodriguez on LinkedIn: View my verified achievement from IBM.
What We Know About the Zero-Day Vulnerability Affecting Zimbra Collaboration and cpio
Blog Bishop Fox
Unpacking the Zimbra Cross-Site Scripting Vulnerability (CVE-2023-37580) - API Security
from
per adult (price varies by group size)