Zimbra Collaboration Suite (ZCS) SQL Injection Vulnerability (CVE-2025-25064)

Zimbra released a security advisory to address a security vulnerability in the Zimbra Collaboration Suite (ZCS). Tracked as CVE-2025-25064, the vulnerability has a critical severity rating with a CVSS score of 9.8. Successful exploitation of the vulnerability may allow attackers to gain unauthorized access to sensitive data and internal network resources.

Multiple Vulnerabilities Patched In Zimbra Collaboration Suite (ZCS)

Zimbra has issued a security update to address multiple vulnerabilities in its Collaboration Suite (ZCS) product. The CVEs patched in the latest security update of ZCS are CVE-2022-27926, CVE-2021-40438, CVE-2021-39275, CVE-2021-21702, CVE-2022-27925, and CVE-2022-27924. CISA has included CVE-2022-27926 in its Known Exploited Vulnerabilities Catalog. Zimbra Collaboration Suite is a widely deployed web client and email … Continue reading “Multiple Vulnerabilities Patched In Zimbra Collaboration Suite (ZCS)”