Roundcube Webmail Vulnerabilities

Fix Roundcube Webmail on Windows Server

7 entries · Windows Server · Sorted by severity

Showing 1–7 of 7 results

	Severity	Title	CVE ID	CVSS	Exploit	Reboot	Script
Active exploitation	CRITICALCISA KEV	RoundCube Webmail Deserialization of Untrusted Data VulnerabilityRoundcube Webmail	CVE-2025-49113	9.9	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	RoundCube Webmail Cross-Site Scripting VulnerabilityRoundcube Webmail	CVE-2024-42009	9.3	In the wild	Reboot Required	Script
Active exploitation	HIGHCISA KEV	RoundCube Webmail Cross-site Scripting VulnerabilityRoundcube Webmail	CVE-2025-68461	7.2	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	RoundCube Webmail Cross-Site Scripting (XSS) VulnerabilityRoundcube Webmail	CVE-2024-37383	6.1	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	Roundcube Webmail Cross-Site Scripting (XSS) VulnerabilityRoundcube Webmail	CVE-2020-13965	6.1	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	Roundcube Webmail Persistent Cross-Site Scripting (XSS) VulnerabilityRoundcube Webmail	CVE-2023-43770	6.1	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	Roundcube Webmail Persistent Cross-Site Scripting (XSS) VulnerabilityRoundcube Webmail	CVE-2023-5631	6.1	In the wild	Reboot Required	Script