Security News > 2024 > October > Critical Zimbra RCE flaw exploited to backdoor servers using emails

Critical Zimbra RCE flaw exploited to backdoor servers using emails

2024-10-02 14:15

Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially crafted emails to the SMTP server. [...]

News URL

https://www.bleepingcomputer.com/news/security/critical-zimbra-rce-flaw-exploited-to-backdoor-servers-using-emails/

#backdoor #critical #email #RCE #server #zimbra

Related news

'Patch yesterday': Zimbra mail servers under siege through RCE vuln (source)
Critical Zimbra RCE vulnerability under mass exploitation (CVE-2024-45519) (source)
Week in review: Critical Zimbra RCE vulnerability exploited, Patch Tuesday forecast (source)
VMware Releases vCenter Server Update to Fix Critical RCE Vulnerability (source)
VMware fixes critical vCenter Server RCE bug – again! (CVE-2024-38812) (source)
VMware fixes bad patch for critical vCenter Server RCE flaw (source)
Week in review: Fortinet patches critical FortiManager 0-day, VMware fixes vCenter Server RCE (source)
Critical RCE bug in VMware vCenter Server now exploited in attacks (source)
Researchers Warn of Ongoing Attacks Exploiting Critical Zimbra Postjournal Flaw (source)
CISA: Network switch RCE flaw impacts critical infrastructure (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Zimbra		8	2	61	14	8	85

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.