Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files
A security vulnerability in Zimbra Collaboration, tracked as CVE-2025-27915, was exploited as a zero-day in attacks against the Brazilian military. This stored cross-site scripting (XSS) vulnerability resulted from inadequate sanitization of HTML content in ICS calendar files.