Over 84,000 Roundcube webmail installations are vulnerable to a critical remote code execution flaw CVE-2025-49113, which was exploited shortly after a patch was released. This widespread exposure poses a significant cybersecurity risk, especially to institutions using affected versions. #CVE-2025-49113 #Roundcube #RemoteCodeExecution
Keypoints
- Over 84,000 webmail instances are vulnerable to CVE-2025-49113 globally.
- The flaw affects Roundcube versions 1.1.0 through 1.6.10 and was patched in June 2025.
- Attackers can exploit the flaw using valid credentials obtained via CSRF, log scraping, or brute force.
- Most vulnerable instances are located in the United States, India, and Germany.
- System administrators are advised to upgrade to versions 1.6.11 or 1.5.10 immediately to mitigate risks.