CVE-2025-66376 - Geek Feed

Security
Tech News

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

March 21, 2026March 21, 2026 geekfeed0Tagged Actively Exploited, CISA, Cross-site scripting, CVE-2025-66376, xss, Zimbra, Zimbra Collaboration

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS). Zimbra is a very popular email and collaboration software suite used by hundreds of millions of people worldwide, including thousands of businesses and hundreds of government agencies. Tracked as CVE-2025-66376 and patched in early November, this high-severity security […]

2 mins read