The U.S. Cybersecurity and Infrastructure Safety Company (CISA) on Thursday added a just lately disclosed high-severity vulnerability within the Zimbra e-mail suite to its Identified Exploited Vulnerabilities Catalog, citing proof of energetic exploitation.
The problem in query is CVE-2022-27924 (CVSS rating: 7.5), a command injection flaw within the platform that would result in the execution of arbitrary Memcached instructions and theft of delicate info.
“Zimbra Collaboration (ZCS) permits an attacker to inject memcached instructions right into a focused occasion which causes an overwrite of arbitrary cached entries,” CISA mentioned.
Particularly, the bug pertains to a case of inadequate validation of consumer enter that, if efficiently exploited, may allow attackers to steal cleartext credentials from customers of focused Zimbra situations.
CISA hasn’t shared technical particulars of the assaults that exploit the vulnerability within the wild and has but to attribute it to a sure risk actor.
Within the mild of energetic exploitation of the flaw, customers are advisable to use the updates to the software program to cut back their publicity to potential cyberattacks.