Unveiling TITAN AI: A New Era of Threat-Informed Third-Party Risk Management
Request a demo Get started for free

STRIKE

SecurityScorecard Advisory: Synacor Zimbra Collaboration Suite XSS Vulnerability (CVE-2024-27443) Added to CISA KEV

SecurityScorecard Advisory: Synacor Zimbra Collaboration Suite XSS Vulnerability (CVE-2024-27443) Added to CISA KEV
SecurityScorecard Advisory: Synacor Zimbra Collaboration Suite XSS Vulnerability (CVE-2024-27443)
CVE-2024-27443 is a vulnerability affecting Zimbra Collaboration.  As described in a blog post by ESET Research, this vulnerability is currently being exploited in the wild and is found to be targeting government entities and defense companies. On May 19, 2025, this vulnerability was added to CISA’s list of Known Exploited Vulnerabilities (CISA-KEV).
  • Severity Medium
  • Impact Medium impact (Potential for material loss)
  • Action: Update to latest patch available.
At the time of this writing, SecurityScorecard’s Attack Surface Intelligence has found over 30,000 IPs that are potentially vulnerable to this CVE.  

Explore other posts

9 Year Old Vulnerability Still Affecting Thousands (CVE-2016-10033)
9 Year Old Vulnerability Still Affecting Thousands (CVE-2016-10033)
SecurityScorecard July 7 Advisory On July 07, 2025, CVE-2016-10033 was added…
STRIKE Alert
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability (CVE-2025-6543) Added to CISA KEV
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability (CVE-2025-6543) Added to CISA KEV
SecurityScorecard June 30 Advisory CVE-2025-6543 is a critical vulnerability affecting Citrix Netscaler Application…
STRIKE Alert
Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability (CVE-2025-32433) Added to CISA KEV
Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability (CVE-2025-32433) Added to CISA KEV
SecurityScorecard June 10 Advisory CVE-2025-32433 is a critical vulnerability affecting Erlang OTP with…
STRIKE Alert