CVE-2024-11182

Name of the Vulnerable Software and Affected Versions MDaemon Email Server versions prior to 24.5.1c

Description A Cross-Site Scripting (XSS) issue exists where a remote attacker can send an HTML email containing JavaScript within an img tag. This allows the attacker to load arbitrary JavaScript code in the context of a webmail user's browser window. This flaw has been actively exploited by the Russia-linked APT28 group in Operation RoundPress, targeting government and defense organizations across Eastern Europe, Africa, and South America to steal credentials and emails.

Recommendations Update to version 24.5.1c or later.