CVE-2025-54391CRITICAL 9.1EPSS p43.1%

CVE-2025-54391CVE-2025-54391

Description

A vulnerability in the EnableTwoFactorAuthRequest SOAP endpoint of Zimbra Collaboration (ZCS) allows an attacker with valid user credentials to bypass Two-Factor Authentication (2FA) protection. The attacker can configure an additional 2FA method (either a third-party authenticator app or email-based 2FA) without presenting a valid authentication token or proving access to an already configured 2FA method. This bypasses 2FA and results in unauthorized access to accounts that are otherwise protected by 2FA.

Scoring

CVSS 3.19.1 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS0.58% probability of exploitation · percentile 43.1% · 2026-06-18T12:00:27Z
Published2025-09-16
Last modified2026-04-15

Underlying weaknesses· 1

CWE-284

References

  1. https://wiki.zimbra.com/wiki/Security_Center
  2. https://wiki.zimbra.com/wiki/Zimbra_Responsible_Disclosure_Policy
  3. https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories

1

TypeTargetConfidenceTier
WeaknessImproper Access Controlcwe-2840%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-33373
CVE
Synacor Zimbra Collaboration Suite (ZCS) Authentication Bypass Vulnerability
CVE
CVE-2025-32354
CVE
CVE-2025-32359
CVE
CVE-2025-54982
CVE
CVE-2025-64103
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.