CISA: Recently patched RoundCube flaws now exploited in attacks
Summary
CISA has added two Roundcube Webmail vulnerabilities to its Known Exploited Vulnerabilities catalog, mandating U.S. federal agencies to patch them within three weeks. These vulnerabilities are now being actively exploited in attacks.
IFF Assessment
FOE
Active exploitation of Roundcube vulnerabilities poses a threat to organizations using the software.
Defender Context
Organizations using Roundcube Webmail should prioritize patching these vulnerabilities. Defenders should monitor for exploitation attempts and review logs for any suspicious activity related to these flaws. The rapid exploitation of vulnerabilities highlights the need for timely patch management and vulnerability monitoring.