MEDIUM
Zoho Mail
CVE published 2026-02-20
CVE-2025-67972
CVE-2025-67972 describes a missing authorization / broken access control issue affecting Zoho ZeptoMail through version 3.2.9. The supplied NVD record assigns a medium CVSS score (4.3) and indicates limited impact (availability only) with low privileges required. Because the source corpus is mixed on product naming and vendor attribution, treat this as a real access-control finding tied to the referenced [truncated]