![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgiLarWGymcFRzMRU-YJRZH-DY48VLkLQv3vwvwqMG5dBhTG4Uq5iJlndUAvsnOKbGl4wa7ZSF7SiuAjgj59q_E6PMlECCraZvaBB03OpQPFIhQYzC8O-CLgK4vrdbFjixz5AeWOeTviTJRtAo2_JeP3lucVHN0VA2sg0TaOgx4wi_YniFwevStGA1pAjxb/s1600/roundcube.jpg)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a medium-severity security flaw impacting Roundcube email software to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The issue, tracked as CVE-2023-43770 (CVSS score: 6.1), relates to a cross-site scripting (XSS) flaw that stems from the handling of
Source:: The Hackers News