CISA: Recently patched RoundCube flaws now exploited in attacks
Over Security - Cybersecurity news aggregator [Unofficial]
February 23, 2026
CISA flagged two Roundcube Webmail vulnerabilities as actively exploited in attacks and ordered U.S. federal agencies to patch them within three weeks.
Discussion in the ATmosphere