Global News

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

October 6, 2025

Written by:

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

A now patched security vulnerability in Zimbra Collaboration was exploited as a zero-day earlier this year in cyber attacks targeting the Brazilian military.
Tracked as CVE-2025-27915 (CVSS score: 5.4), the vulnerability is a stored cross-site scripting (XSS) vulnerability in the Classic Web Client that arises as a result of insufficient sanitization of HTML content in ICS calendar files,

Source: https://thehackernews.com/2025/10/zimbra-zero-day-exploited-to-target.html

#vulnerabilityzimbra #xssvulnerability #zimbrazero #zimbracollaboration #zimbra

Global News

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Leave a comment Cancel reply

Yekaterinburg Court Jails 5 Leftist Activists Over Alleged Coup Attempt

Central Bank of Ireland publishes roadmap to deliver a more effective and efficient regulatory framework

Rhasidat Adeleke renews Allianz sponsorship as calls grow for GAA to scrap deal

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Share this:

Leave a comment Cancel reply

Yekaterinburg Court Jails 5 Leftist Activists Over Alleged Coup Attempt

Central Bank of Ireland publishes roadmap to deliver a more effective and efficient regulatory framework

Rhasidat Adeleke renews Allianz sponsorship as calls grow for GAA to scrap deal