📚 A flaw in Zimbra email suite allows stealing login credentials of the users

🕛 Zeit seit Veröffentlichung: 690 Tage, 4 Stunden 27 Minuten
📆 Veröffentlicht am: 15.06.2022 um 01:11 Uhr
💡 Newskategorie: IT Security Nachrichten
🔗 Quelle: securityaffairs.co

A high-severity vulnerability in the Zimbra email suite could be exploited by an unauthenticated attacker to steal login credentials of users. Researchers from Sonarsource have discovered a high-severity vulnerability impacting the Zimbra email suite, tracked as CVE-2022-27924 (CVSS score: 7.5), that can be exploited by an unauthenticated attacker to steal login credentials of users without user […]

The post A flaw in Zimbra email suite allows stealing login credentials of the users appeared first on Security Affairs.

...

Sharing is caring on Social Media

Join the Team IT Security Community

📌 A flaw in Zimbra email suite allows stealing login credentials of the users

🕛 689 Tage, 22 Stunden 35 Minuten
📆 15.06.2022 um 01:11 Uhr
📈 77.96 Punkte

📌 Synacor Zimbra Collaboration Suite 8.7/8.8 zimbra-chat/zimbra-talk XML Request XML External Entity

🕛 1417 Tage, 22 Stunden 36 Minuten
📆 17.06.2020 um 06:33 Uhr
📈 50.69 Punkte

📌 Zimbra bug allows stealing email logins with no user interaction

🕛 689 Tage, 11 Stunden 5 Minuten
📆 15.06.2022 um 20:01 Uhr
📈 41.61 Punkte

📌 New Zimbra Email Vulnerability Could Let Attackers Steal Your Login Credentials

🕛 690 Tage, 11 Stunden 4 Minuten
📆 14.06.2022 um 17:13 Uhr
📈 36.6 Punkte

📌 Synacor Zimbra Collaboration Suite/Zimbra Web Client up to 8.8.8 Patch 6/8.8.9 Briefcase Persistent cross site scripting

🕛 1417 Tage, 17 Stunden 35 Minuten
📆 17.06.2020 um 10:51 Uhr
📈 36.49 Punkte

📌 CVE-2022-41349 | Zimbra Zimbra Collaboration Suite 8.8.15 /h/compose attachUrl cross site scripting

🕛 544 Tage, 14 Stunden 34 Minuten
📆 07.11.2022 um 14:04 Uhr
📈 36.49 Punkte

📌 Hackers Exploiting High-Severity Zimbra Flaw to Steal Email Account Credentials

🕛 635 Tage, 10 Stunden 8 Minuten
📆 08.08.2022 um 18:08 Uhr
📈 36.18 Punkte

📌 VMware addresses SSRF flaw in vRealize Operations that allows stealing admin credentials

🕛 1131 Tage, 8 Stunden 53 Minuten
📆 30.03.2021 um 21:59 Uhr
📈 36.06 Punkte

📌 A stored XSS flaw in RainLoop allows stealing users’ emails

🕛 741 Tage, 10 Stunden 59 Minuten
📆 22.04.2022 um 16:07 Uhr
📈 33.29 Punkte

📌 Hackers are actively exploiting password-stealing flaw in Zimbra

🕛 638 Tage, 9 Stunden 35 Minuten
📆 05.08.2022 um 19:29 Uhr
📈 32.21 Punkte

📌 CVE-2020-9476 | Arris TG1692A Login Page /login Credentials insufficiently protected credentials

🕛 39 Tage, 10 Stunden 46 Minuten
📆 09.04.2024 um 15:11 Uhr
📈 31.46 Punkte

📌 Chinese APT 10 Group Hacked Nearly 10 Telecom Networks and Stealing Users Call Records, PII, Credentials, Email Data and more

🕛 1774 Tage, 21 Stunden 8 Minuten
📆 26.06.2019 um 07:20 Uhr
📈 30.71 Punkte

📌 Hackers Exploiting Unpatched RCE Flaw in Zimbra Collaboration Suite

🕛 574 Tage, 18 Stunden 51 Minuten
📆 08.10.2022 um 09:50 Uhr
📈 29.56 Punkte

📌 Experts warn of mass exploitation of an RCE flaw in Zimbra Collaboration Suite

🕛 631 Tage, 19 Stunden 23 Minuten
📆 12.08.2022 um 10:00 Uhr
📈 29.56 Punkte

📌 Experts warn of mass exploitation of an RCE flaw in Zimbra Collaboration Suite

🕛 631 Tage, 19 Stunden 23 Minuten
📆 12.08.2022 um 10:00 Uhr
📈 29.56 Punkte

📌 Unpatched remote code execution flaw in Zimbra Collaboration Suite actively exploited

🕛 574 Tage, 13 Stunden 23 Minuten
📆 08.10.2022 um 15:17 Uhr
📈 29.56 Punkte

📌 Zimbra Collaboration Suite Vulnerable Due to Unpatched RCE Flaw

🕛 571 Tage, 17 Stunden 36 Minuten
📆 11.10.2022 um 11:14 Uhr
📈 29.56 Punkte

📌 Zimbra Collaboration Suite bis 8.7/8.8.6 ZmMailMsgViewgetAttachmentLinkHtml Email Attachment Cross Site Scripting

🕛 2229 Tage, 21 Stunden 4 Minuten
📆 27.03.2018 um 02:00 Uhr
📈 28.95 Punkte

📌 Low CVE-2020-11737: Zimbra Zimbra

🕛 1458 Tage, 5 Stunden 5 Minuten
📆 05.05.2020 um 19:30 Uhr
📈 28.41 Punkte

📌 Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups

🕛 170 Tage, 11 Stunden 49 Minuten
📆 16.11.2023 um 17:09 Uhr
📈 28.14 Punkte

📌 Flaw in Evernote Web Clipper for Chrome extension allows stealing data

🕛 1787 Tage, 19 Stunden 8 Minuten
📆 13.06.2019 um 09:29 Uhr
📈 28.02 Punkte

📌 Expert discloses unpatched Safari flaw that allows stealing local files

🕛 1348 Tage, 9 Stunden 23 Minuten
📆 25.08.2020 um 19:55 Uhr
📈 28.02 Punkte

📌 5 vulnerabilities in Samba. One critical flaw CVE-2022-32744 allows Active Directory users to change passwords of other users

🕛 639 Tage, 7 Stunden 21 Minuten
📆 04.08.2022 um 21:38 Uhr
📈 27.83 Punkte

📌 GitLab: Email notification about login email changed is not received when using verified linked email address

🕛 1501 Tage, 14 Stunden 51 Minuten
📆 21.02.2020 um 19:05 Uhr
📈 27.67 Punkte

📌 Ukrainian Imprisoned for Stealing Thousands of Login Credentials Per Week & Selling

🕛 721 Tage, 19 Stunden 8 Minuten
📆 14.05.2022 um 10:16 Uhr
📈 26.46 Punkte

📌 Surge in Open Source Malware Stealing Login Credentials & Sensitive Data

🕛 116 Tage, 21 Stunden 35 Minuten
📆 09.01.2024 um 06:55 Uhr
📈 26.46 Punkte

📌 Oracle E-Business Suite Flaw Allows Downloads of Documents

🕛 2482 Tage, 8 Stunden 53 Minuten
📆 18.07.2017 um 19:45 Uhr
📈 25.37 Punkte

📌 Information Disclosure flaw allows attackers to find Huawei routers with default credentials

🕛 1958 Tage, 21 Stunden 23 Minuten
📆 24.12.2018 um 07:57 Uhr
📈 25.33 Punkte

📌 could someone look into androids trusted credentials within security whether i should allow them or disable some of them cause there are even government authoritys as trusted credentials in there (settings >security>trusted credentials) (Androi

🕛 1670 Tage, 11 Stunden 9 Minuten
📆 08.10.2019 um 16:25 Uhr
📈 24.13 Punkte

📌 CVE-2019-19687 | OpenStack Keystone 15.0.0/16.0.0 Credentials API /v3/credentials insufficiently protected credentials (RHSA-2019:4358)

🕛 56 Tage, 19 Stunden 31 Minuten
📆 09.03.2024 um 09:43 Uhr
📈 24.13 Punkte

📌 Experts warn of a new Android banking trojan stealing users' credentials

🕛 1089 Tage, 16 Stunden 23 Minuten
📆 11.05.2021 um 11:50 Uhr
📈 24.04 Punkte

📌 New NullMixer Malware Campaign Stealing Users' Payment Data and Credentials

🕛 585 Tage, 12 Stunden 51 Minuten
📆 27.09.2022 um 15:19 Uhr
📈 24.04 Punkte

📌 Facebook Detects 400 Android and iOS Apps Stealing Users Log-in Credentials

🕛 575 Tage, 12 Stunden 36 Minuten
📆 07.10.2022 um 15:52 Uhr
📈 24.04 Punkte

📌 Google Now Allows G Suite Users to Enable Sign-In Prompts On All Their Phones

🕛 2035 Tage, 5 Stunden 38 Minuten
📆 08.10.2018 um 22:41 Uhr
📈 23.36 Punkte

📌 Google Allows G Suite Users to Log In With Security Codes

🕛 1774 Tage, 12 Stunden 7 Minuten
📆 26.06.2019 um 16:58 Uhr
📈 23.36 Punkte

🏠 Team IT Security News

📚 A flaw in Zimbra email suite allows stealing login credentials of the users

Sharing is caring on Social Media

Join the Team IT Security Community