Zimbra has released patches to contain an actively exploited security flaw in its enterprise collaboration suite that could be leveraged to upload arbitrary files to vulnerable instances.
Tracked as CVE-2022-41352 (CVSS score: 9.8), the issue affects a component of the Zimbra suite called Amavis, an open source content filter, and more specifically, the cpio utility it uses to scan and extract
https://thehackernews.com/2022/10/zimbra-releases-patch-for-actively.html?utm_source=dlvr.it&utm_medium=blogger
No comments:
Post a Comment