A naukri.com initiative
Securityaffairs
1M
183
Image Credit: Securityaffairs
U.S. CISA adds Microsoft Partner Center and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog
- The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Microsoft Partner Center and Synacor Zimbra Collaboration Suite vulnerabilities to its Known Exploited Vulnerabilities catalog.
- The first vulnerability, CVE-2023-34192 (CVSS score: 9.0), is a cross-site scripting (XSS) issue in Synacor Zimbra Collaboration Suite (ZCS), which was addressed in July 2023.
- The second vulnerability, CVE-2024-49035 (CVSS score: 8.7), is an improper access control vulnerability in Microsoft Partner Center, which was addressed in November 2024.
- CISA orders federal agencies to address the vulnerabilities by March 25, 2025.
Read Full Article
11 Likes
For uninterrupted reading, download the app