Alert: CISA Warns of Active 'Roundcube' Email Attacks - Patch Now
13 February 2024 at 04:51
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on MondayΒ addedΒ a medium-severity security flaw impacting Roundcube email software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The issue, tracked asΒ CVE-2023-43770Β (CVSS score: 6.1), relates to a cross-site scripting (XSS) flaw that stems from the handling of