One Article Review
| Source |  The Hacker News |
|---|---|
| Identifiant | 8647826 |
| Date de publication | 2025-02-10 14:39:00 (vue: 2025-02-10 10:08:38) |
| Titre | Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities |
| Texte | Zimbra has released software updates to address critical security flaws in its Collaboration software that, if successfully exploited, could result in information disclosure under certain conditions.
The vulnerability, tracked as CVE-2025-25064, carries a CVSS score of 9.8 out of a maximum of 10.0. It has been described as an SQL injection bug in the ZimbraSync Service SOAP endpoint affecting
Zimbra has released software updates to address critical security flaws in its Collaboration software that, if successfully exploited, could result in information disclosure under certain conditions. The vulnerability, tracked as CVE-2025-25064, carries a CVSS score of 9.8 out of a maximum of 10.0. It has been described as an SQL injection bug in the ZimbraSync Service SOAP endpoint affecting |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 2025 25064 address affecting been bug carries certain collaboration conditions could critical cve cvss described disclosure endpoint exploited flaws has information injection its maximum out released releases result score security service soap software sql ssrf stored successfully tracked under updates vulnerabilities vulnerability xss zimbra zimbrasync |
| Tags | Vulnerability |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.