all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Roundcube Webmail Vulnerability Under Exploitation, Patch Now

Add to bookmarks
Feb. 26, 2024, 9 a.m. | Rohan Timalsina

Security Boulevard securityboulevard.com

Recently, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Roundcube webmail vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2023-43770, this issue is a persistent cross-site scripting (XSS) issue that allows attackers to obtain sensitive information through specially crafted links in plain text messages. The affected Roundcube versions include 1.4.14, 1.5.x […]


The post Roundcube Webmail Vulnerability Under Exploitation, Patch Now appeared first on TuxCare.


The post Roundcube Webmail Vulnerability Under Exploitation, Patch Now appeared …

agency attackers catalog cisa cisa advisory cisa known exploited vulnerabilities cisa threat update cross-site cve cve-2023-43770 cybersecurity cybersecurity threats enterprise security exploitation exploited exploited vulnerabilities information infrastructure infrastructure security issue kev known exploited known exploited vulnerabilities links linux & open source news messages patch persistent plain text roundcube roundcube webmail scripting security security patches security vulnerabilites sensitive sensitive information text text messages under vulnerabilities vulnerability webmail xss

Visit resource

More from securityboulevard.com / Security Boulevard

What is General Data Protection Regulation Act (GDPR)? 2 hours ago | securityboulevard.com
act adoption center challenges +32
Cloud Monitor Automation Improves K-12 Cybersecurity Training & Awareness 12 hours ago | securityboulevard.com
automation awareness chief cloud +28
USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware 15 hours ago | securityboulevard.com
access authors conference events +15
Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656) 16 hours ago | securityboulevard.com
ant application customers cve +21
Understanding Cybersecurity Vulnerabilities 17 hours ago | securityboulevard.com
advice attacks can cybersecurity +12
Bridging the Gap: Uniting Development and AppSec 18 hours ago | securityboulevard.com
application security appsec aspm bridging the gap +20
Open-Source Software Security 19 hours ago | securityboulevard.com
blog blog post cloud cloud-native +14
USENIX Security ’23 – Union Under Duress: Understanding Hazards of Duplicate Resource Mismediation in Android … 19 hours ago | securityboulevard.com
access android authors conference +20
How to secure GraphQL APIs: challenges and best practices 20 hours ago | securityboulevard.com
apis api security best practices challenges +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Director, Cybersecurity - Governance, Risk and Compliance (GRC)

@ Stanley Black & Decker | New Britain CT USA - 1000 Stanley Dr
View on infosec-jobs.com

Information Security Risk Metrics Lead

@ Live Nation Entertainment | Work At Home-Connecticut
View on infosec-jobs.com

IT Product Owner - Enterprise DevSec Platform (d/f/m)

@ Airbus | Hamburg - Finkenwerder
View on infosec-jobs.com

Senior Information Security Specialist

@ Arthur Grand Technologies Inc | Arlington, VA, United States
View on infosec-jobs.com

Information Security Controls SME

@ Sword | Aberdeen, Scotland, United Kingdom
View on infosec-jobs.com
View more jobs