Lucene search
HiveForce LabsHIVEPRO:CF5F442A86B13168CB7DC81CFC8099A3HistoryNov 20, 2023 - 4:51 a.m.
Four Threat Actors Capitalized on Zimbra Zero Day to Infiltrate Government Organizations
2023-11-2004:51:29
HiveForce Labs
www.hivepro.com
30
threat actors
zimbra zero day
cve-2023-37580
government organizations
email data
user credentials
authentication tokens
hiveforce labs
linkedin
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A zero-day vulnerability identified as CVE-2023-37580 in Zimbra Collaboration email software has been exploited by four different groups in attacks. These attacks aimed to illicitly obtain email data, user credentials, and authentication tokens. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.
Related
nvd
nvd
CVE-2023-37580
2023-07-31 16:15:10
cvelist
cvelist
CVE-2023-37580
2023-07-31 00:00:00
thn
thn
Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups
2023-11-16 16:09:00
schneier
schneier
Email Security Flaw Found in the Wild
2023-11-21 12:05:07
wallarmlab
wallarmlab
Unpacking the Zimbra Cross-Site Scripting Vulnerability (CVE-2023-37580)
2023-11-21 15:59:17
hivepro
hivepro
Zimbra Fixes A Zero-Day Vulnerability Exploited in Attacks
2023-07-31 05:57:58
prion
prion
Cross site scripting
2023-07-31 16:15:00
cisa_kev
cisa_kev
Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability
2023-07-27 00:00:00
cve
cve
CVE-2023-37580
2023-07-31 16:15:10
attackerkb
attackerkb
CVE-2023-37580
2023-07-31 00:00:00
osv
osv
CVE-2023-37580
2023-07-31 16:15:10
nuclei
nuclei
Zimbra Collaboration Suite (ZCS) v.8.8.15 - Cross-Site Scripting
2023-08-01 05:26:17
nessus
nessus
Zimbra Collaboration Server 8.x < 8.8.15 Patch 41 Multiple Vulnerabilities
2023-07-28 00:00:00
AI Score
7.3
Confidence
Low
EPSS
0.304
Percentile
97.0%
Related for HIVEPRO:CF5F442A86B13168CB7DC81CFC8099A3