CVE-2025-48700 — Vulnetix

CVE-2025-48700 PUBLISHED KEV

Rilevato lo sfruttamento attivo in rete della vulnerabilità CVE-2025-48700 – già sanata dal vendor – che interessa Zimbra Collaboration Suite (ZCS). Tale vulnerabilità, qualora sfruttata, potrebbe consentire ad un utente malintenzionato l’accesso ad informazioni sensibili sui sistemi interessati.

EPSS 18.19% · 95.3th percentile

Risk Scores

EPSS Score

18.19%

95.3th percentile

Affected Products

Vendor	Product	Versions
Synacor	Zimbra

Exploit Intelligence

breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
breakglass-all.yar (github-yara)
data.js (github-poc)
data.js (github-poc)

…and 14 more exploits

Timeline

Dec 18, 2024 CVE Published
Jun 23, 2025 Coalition ESS Score
Jun 24, 2025 EPSS Score
Jun 24, 2025 Coalition ESS Score
Jul 4, 2025 EPSS Score
Jul 11, 2025 Coalition ESS Score
Jul 14, 2025 EPSS Score
Jul 24, 2025 EPSS Score
Aug 3, 2025 EPSS Score
Aug 13, 2025 EPSS Score
Aug 22, 2025 Coalition ESS Score
Aug 23, 2025 EPSS Score

References

https://www.acn.gov.it/portale/w/zimbra-rilevato-sfruttamento-in-rete-della-cve-2025-48700 advisory

Open in Interactive Console →