Critical XSS Vulnerability in Zimbra Collaboration Suite Actively Exploited by Sednit

A critical XSS vulnerability, CVE-2024-27443, affects the CalendarInvite functionality of Zimbra Collaboration Suite. This flaw is being actively exploited and may be linked to the Sednit group, also known as Fancy Bear. The vulnerability impacts approximately 129,000 servers. Specific technical details and real-world impacts are not mentioned in the article.