Communities at Zimbra
Zimbra Security Center
News & Alerts
This group requires membership for participation - click to join
Zimbra is committed to providing a secure collaboration experience for our customers, partners and users of our software.
Zimbra Collaboration Advisories
Zimbra Social Advisories
Links & Resources
Zimbra Security Program
Zimbra Security Response Policy
Zimbra Vulnerability Rating Classification
Zimbra Responsible Disclosure Policy
Reporting Vulnerabilities to Zimbra
News & Alerts
By view count
By comment count
Thu, Mar 5 2015
What the FREAK attack means to Zimbra
Zimbra is aware of a newly disclosed SSL/TLS vulnerability that provides a potential malicious actor with a method to perform a Man-in-the-Middle...
Wed, Jan 28 2015
GNU C Library Vulnerability — aka GHOST
Zimbra is aware of a Linux vulnerability, specifically the GNU C Library. Details The vulnerability appears to have been found by Qualys and...
Thu, Dec 11 2014
We have received a few inquiries about the reported TLS protocol vulnerability via the POODLE attack. SSL/TLS services in ZCS come from OpenSSL...
Thu, Nov 6 2014
Zimbra Collaboration Updates (8.0.9 & 8.5.1)
Zimbra Collaboration 8.0.9 and 8.5.1 are out with security updates, including the update to OpenSSL 1.0.1j. For those looking to disable SSLv3...
Zimbra Support Program Overview
Zimbra Customer Support Portal
Terms and Conditions
Zimbra Service Providers
Zimbra Value Added Resellers
Zimbra Training Partners