Mass Exploitation of (Un)authenticated Zimbra RCE: CVE-2022-27925
Volexity’s investigations uncovered evidence indicating the likely cause of these breaches was exploitation of CVE-2022-27925, a remote-code-execution (RCE) vulnerability in ZCS. ... While investigating the compromise of multiple Zimbra email server instances as part of incident response activities, Volexity confirmed remote exploitation of ZCS as the root cause of multiple incidents. CVEs: CVE-2022-27925, CVE-2022-27924 Tags: ProofOfExploit, Hacking, CVE-2022-27925, CVE-2022-27924, Microsoft, Fortune500Companies, BigTechCompanies [View Article](https://www.volexity.com/blog/2022/08/10/mass-exploitation-of-unauthenticated-zimbra-rce-cve-2022-27925/)