> TritonInfoSec News
Home / Mar 19, 2026 / Story
1
#2 BleepingComputer general March 18, 2026 at 19:57 UTC

CISA orders feds to patch Zimbra XSS flaw exploited in attacks

By Sergiu Gatlan

AI Summary

CISA has issued a binding operational directive ordering federal agencies to patch an actively exploited XSS vulnerability in Zimbra Collaboration Suite. The cross-site scripting flaw is being leveraged in ongoing attacks against government email systems, highlighting the continued targeting of federal communications infrastructure.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 92.0/100

# More from March 19

  1. 1
    Ransomware gang exploits Cisco flaw in zero-day attacks since January BleepingComputer
  2. 3
    Russia-linked hackers use advanced iPhone exploit to target Ukrainians The Record
  3. 4
    Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23 The Hacker News
  4. 5
    Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit The Hacker News
  5. 6
    9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors The Hacker News
  6. 7
    Bank software vendor Marquis says more than 670,000 impacted by August breach The Record
  7. 8
    Aura confirms data breach exposing 900,000 marketing contacts BleepingComputer
  8. 9
    ConnectWise patches new flaw allowing ScreenConnect hijacking BleepingComputer
  9. 10
    'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft Dark Reading