A vulnerability in Zimbra’s software is being exploited right now by miscreants to compromise systems and attack selected government organizations, experts reckon.
An update to squash the security bug won’t be pushed out until later this month, according to the developer, which for now has “kindly” asked customers to manually apply a fix.
The flaw affects Zimbra Collaboration Suite version 8.8.15, and “could potentially impact the confidentiality and integrity of your data,” according to an advisory from the software maker. In other words, the bug can be exploited to steal or alter information among other things.