Zimbra Zero-Day (CVE-2025-27915) Actively Exploited to Steal Credentials via Malicious Calendar Invites
Researchers at StrikeReady uncovered a targeted campaign exploiting a zero-day in the Zimbra Collaboration Suite (ZCS) — a widely used open-source mail platform deployed by numerous governments and enterprises. Tracked as CVE-2025-27915, the flaw...
