Plan
active
Zimbra Classic Web Client critical XSS flaw requires patching
- Engineer — Plan: Critical XSS in Zimbra Classic Web Client affects organizations running on-prem Zimbra Collaboration; no KEV listing or public PoC in enrichment signals, so patch on your normal critical cycle — apply the vendor-supplied update to your Zimbra instance this sprint.
- SOC/IR — Skip
- Leader — Skip
This entry was curated and judged by AI (Claude) with automated enrichment
(CISA KEV / EPSS / public PoC). Verify against the original source before
acting. Found a bad verdict?
Report it —
confirmed errors go to the corrections log.