Information security
fromSecurityWeek
5 days agoLibraesva Email Security Gateway Vulnerability Exploited by Nation-State Hackers
A command-injection vulnerability in Libraesva ESG allows arbitrary shell command execution via crafted compressed email attachments; patches available for ESG 5.x while 4.x is discontinued.