What the Vuln: Zimbra

What the Vuln is a series where our offensive security experts and hackers deep dive and zero-in on one specific vulnerability that plagues organizations.

New UnRAR Vulnerability Could Let Attackers Hack Zimbra Webmail Servers

Bishop Fox What the Vuln Episode 2: Zimbra Vulnerabilities

Discover New Offensive Security Resources

Bishop Fox

Chinese hackers use Zimbra 0-day vulnerability to hack European media

Zimbra - Zimbra Security Update CVE-2023-41106 - A one-click security vulnerability in Zimbra (all versions) that could allow an unauthenticated attacker to gain access to a Zimbra account has surfaced. Read more

Winter Vivern Uses Zimbra Vulnerability to Target NATO Email

Understanding the Zimbra XSS Vulnerability

Blog Bishop Fox

Zimbra Latest Versions Not Affected by Log4j Vulnerability · NetShop ISP

Zimbra 8.8.15 - Webmail Compromise via Email