Security Advisory

Zimbra Product Security Update Advisory (CVE-2025-27915)

  • Oct 13 2025
Zimbra Product Security Update Advisory (CVE-2025-27915)

Overview

 

We have released a security update to fix vulnerabilities in Zimbra products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

CVE-2025-27915

 

Zimbra Collaboration Suite (ZCS) Version: 9.0 or later and before 9.0.0 Patch 44
Zimbra Collaboration Suite (ZCS) Version: 10.0 and later but before 10.0.13
Zimbra Collaboration Suite (ZCS) Version: 10.1 or later but less than 10.1.5

 

 

Resolved Vulnerabilities

 

Cross-site scripting vulnerability in Zimbra Classic Web Client (CVE-2025-27915)

 

 

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2025-27915

 

Zimbra Collaboration Suite (ZCS) Version: 9.0.0 Patch 44
Zimbra Collaboration Suite (ZCS) Version: 10.0.13
Zimbra Collaboration Suite (ZCS) Version: 10.1.5

 

 

References

 

[1] Zimbra Security Advisories
https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories

Tags:
Previous Post

Next Post