Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
CISA Highlights Exploited Roundcube Vulnerabilities

CISA Highlights Exploited Roundcube Vulnerabilities

Posted on February 21, 2026 By CWS

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) catalog with two critical security issues affecting the Roundcube webmail platform. These vulnerabilities, which have been actively exploited, necessitate immediate attention from cybersecurity professionals.

Details of the Identified Flaws

The first vulnerability, identified as CVE-2025-49113, holds a CVSS score of 9.9. This serious issue involves the deserialization of untrusted data, enabling remote code execution by authenticated users due to the lack of validation on the _from parameter within a specific URL. This flaw was addressed in a security patch released in June 2025.

Another flaw, CVE-2025-68461, presents a cross-site scripting vulnerability through the animate tag in SVG documents. Although it has a lower CVSS score of 7.2, it remains a significant concern, having been rectified in a December 2025 update.

Discovery and Exploitation

FearsOff, a cybersecurity firm based in Dubai, was instrumental in uncovering CVE-2025-49113. The company’s founder, Kirill Firsov, reported that the vulnerability was exploited within 48 hours of its public disclosure, with exploits becoming available for purchase shortly thereafter.

Firsov highlighted the ease of triggering this vulnerability on standard installations and noted its presence in the codebase for over a decade. Although the specific actors exploiting these flaws remain unidentified, previous attacks on Roundcube have involved nation-state groups such as APT28 and Winter Vivern.

Urgent Remediation Required

The Federal Civilian Executive Branch (FCEB) agencies have been mandated to address these vulnerabilities by March 13, 2026. This directive is part of a broader effort to safeguard networks from these active threats.

In light of these developments, organizations using Roundcube are urged to apply the necessary patches and review their security measures to prevent potential breaches.

As cyber threats continue to evolve, it is crucial for entities to stay informed and proactive in their security strategies to mitigate the risks associated with such vulnerabilities.

The Hacker News Tags:CISA, Cybersecurity, email software, Exploits, FCEB, nation-state actors, patch management, Roundcube, security flaws, Vulnerabilities

Post navigation

Previous Post: Anthropic Introduces AI-Driven Code Security Analysis
Next Post: EC-Council Boosts AI Workforce with New Certifications

Related Posts

North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms North Korea Uses GitHub in Diplomat Cyber Attacks as IT Worker Scheme Hits 320+ Firms The Hacker News
HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass The Hacker News
OpenAI Enhances Cybersecurity with GPT-5.5-Cyber OpenAI Enhances Cybersecurity with GPT-5.5-Cyber The Hacker News
Armored Likho’s BusySnake Threatens Government and Energy Sectors Armored Likho’s BusySnake Threatens Government and Energy Sectors The Hacker News
Coruna iOS Kit Revives 2023 Exploits in New Attacks Coruna iOS Kit Revives 2023 Exploits in New Attacks The Hacker News
Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices The Hacker News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • Vulnerability in GCP Dialogflow Enables Malicious Code Injection
  • Gitea Vulnerability Exploited Actively, Experts Alert
  • RedWing Malware Offers Banking Fraud via Telegram
  • Enhancing AI SOC SLA: Transitioning from 2019 to 2026 Standards
  • County Pays $1 Million to Prevent Data Leak, Reports Show

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • Vulnerability in GCP Dialogflow Enables Malicious Code Injection
  • Gitea Vulnerability Exploited Actively, Experts Alert
  • RedWing Malware Offers Banking Fraud via Telegram
  • Enhancing AI SOC SLA: Transitioning from 2019 to 2026 Standards
  • County Pays $1 Million to Prevent Data Leak, Reports Show

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark