all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Roundcube Webmail Vulnerability Under Exploitation, Patch Now

Add to bookmarks
Feb. 26, 2024, 9 a.m. | Rohan Timalsina

Security Boulevard securityboulevard.com

Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Roundcube webmail vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2023-43770, this issue is a persistent cross-site scripting (XSS) issue that allows attackers to obtain sensitive information through specially crafted links in plain text messages. The affected Roundcube versions include 1.4.14, 1.5.x […]


The post Roundcube Webmail Vulnerability Under Exploitation, Patch Now appeared first on TuxCare.


The post Roundcube Webmail Vulnerability Under Exploitation, Patch Now appeared …

agency attackers catalog cisa cisa advisory cisa known exploited vulnerabilities cisa threat update cross-site cve cve-2023-43770 cybersecurity cybersecurity threats enterprise security exploitation exploited exploited vulnerabilities information infrastructure infrastructure security issue kev known exploited known exploited vulnerabilities links linux & open source news messages patch persistent plain text roundcube roundcube webmail scripting security security patches security vulnerabilites sensitive sensitive information text text messages under vulnerabilities vulnerability webmail xss

Visit resource

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – Intender: Fuzzing Intent-Based Networking with Intent-State Transition Guidance 17 hours ago | securityboulevard.com
access authors channel conference +20
What is an IS (RBI) Audit? 1 day, 1 hour ago | securityboulevard.com
address audit banking banks +27
Understanding Credential Phishing 1 day, 9 hours ago | securityboulevard.com
attackers breach breaches ceo +23
Adaptive DDoS Defense’s Value in the Security Ecosystem 1 day, 9 hours ago | securityboulevard.com
adaptive ddos analytics & intelligence and response attack +24
Understanding Business Email Compromise (BEC) 1 day, 9 hours ago | securityboulevard.com
attackers attacks bec business +17
Risk vs. Threat vs. Vulnerability: What is the difference? 1 day, 11 hours ago | securityboulevard.com
ciso suite click cyber lingo cyber security risks +11
Compromising ByteDance’s Rspack using GitHub Actions Vulnerabilities 1 day, 12 hours ago | securityboulevard.com
actions attacker bytedance bytedance rspack +16
Impart Security: Leading the Charge in API Security with SOC 2 Type 2 Certification | … 1 day, 12 hours ago | securityboulevard.com
api api security certification charge +7
Senator Calls for FTC, SEC Probe Into UnitedHealth’s ‘Negligence’ in Breach 1 day, 12 hours ago | securityboulevard.com
attack board breach ceo +30

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com