Zimbra XSS exploited by TEMP_HERETIC APT against European government email. Apply Zimbra patches immediately. Threat actor used CVE-2022-24682 to gain initial access then chained with RCE bugs. Audit admin account activity.
Zimbra Collaboration webmail client XSS vulnerability exploited by TEMP_HERETIC to steal email accounts of European government organizations.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →