Lucene search
K

287 matches found

CNNVD
CNNVD
added 2026/04/02 12:0 a.m.13 views

SEPPmail Secure Email Gateway 安全漏洞

SEPPmail Secure Email Gateway is an email security gateway developed by the German company SEPPmail. Versions of SEPPmail Secure Email Gateway prior to version 15.0.3 contained security vulnerabilities. These vulnerabilities stemmed from a flaw that allowed attackers with specially crafted email...

7.5CVSS5.8AI score0.00217EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.5 views

PT-2026-29694

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to upload PGP keys with UIDs that do not match their email address...

5.3CVSS5.9AI score0.00232EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.12 views

SEPPmail Secure Email Gateway 安全漏洞

SEPPmail Secure Email Gateway is an email security gateway developed by the German company SEPPmail. Versions of SEPPmail Secure Email Gateway prior to version 15.0.3 contained security vulnerabilities, which were due to allowing attackers to forge encrypted emails using GINA...

6.3CVSS5.8AI score0.00126EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/05 1:39 p.m.5 views

CVE-2026-27444

SEPPmail Secure Email Gateway before version 15.0.1 incorrectly interprets email addresses in the email headers, causing an interpretation conflict with other mail infrastructure that allows an attacker to fake the source of the email or decrypt it...

7.8CVSS5.9AI score0.00213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/05 1:39 p.m.4 views

CVE-2026-2747

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor...

7.5CVSS5.9AI score0.0025EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/04 9:31 a.m.4 views

EUVD-2026-9383

SEPPmail Secure Email Gateway before version 15.0.1 does not properly communicate PGP signature verification results, leaving users unable to detect forged emails...

6.9CVSS5.9AI score0.00157EPSS
Exploits0References2
NVD
NVD
added 2026/03/04 9:15 a.m.12 views

CVE-2026-2747

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor...

7.5CVSS0.0025EPSS
Exploits0References1
NVD
NVD
added 2026/03/04 9:15 a.m.9 views

CVE-2026-27443

SEPPmail Secure Email Gateway before version 15.0.1 does not properly sanitize the headers from S/MIME protected MIME entities, allowing an attacker to control trusted headers...

8.2CVSS0.00217EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 8:48 a.m.18 views

CVE-2026-2748

CVE-2026-2748 affects SEPPmail Secure Email Gateway prior to version 15.0.1. The issue is improper validation of S/MIME certificates issued for email addresses containing whitespace, which enables signature spoofing. Impact is limited to confidentiality/integrity as described, with no availabilit...

7.8CVSS5.9AI score0.0012EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/04 8:48 a.m.5 views

CVE-2026-2748

SEPPmail Secure Email Gateway before version 15.0.1 improperly validates S/MIME certificates issued for email addresses containing whitespaces, allowing signature spoofing...

7.8CVSS5.9AI score0.0012EPSS
Exploits0References2
CVE
CVE
added 2026/03/04 8:48 a.m.22 views

CVE-2026-27442

The SEPPmail Secure Email Gateway’s GINA web interface (pre-15.0.1) has a vulnerability where attachment filenames in GINA-encrypted emails are not properly validated, allowing an attacker to access files stored on the gateway. Affected product: SEPPmail Secure Email Gateway, component: GINA web ...

9.3CVSS6AI score0.0042EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.5 views

PT-2026-22891

SEPPmail Secure Email Gateway before version 15.0.1 does not properly verify that a PGP signature was generated by the expected key, allowing signature spoofing...

6.9CVSS5.9AI score0.00123EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.7 views

PT-2026-22893

SEPPmail Secure Email Gateway before version 15.0.1 does not properly communicate PGP signature verification results, leaving users unable to detect forged emails...

6.9CVSS5.9AI score0.00157EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.5 views

PT-2026-22894

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor...

6.9CVSS5.9AI score0.0025EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.8 views

SEPPmail Secure Email Gateway 安全漏洞

SEPPmail Secure Email Gateway is an email security gateway developed by the German company SEPPmail. Versions of SEPPmail Secure Email Gateway prior to version 15.0.1 contained security vulnerabilities. These vulnerabilities stemmed from improper verification of whether the PGP signature was...

6.9CVSS5.8AI score0.00123EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.7 views

PT-2026-22889

SEPPmail Secure Email Gateway before version 15.0.1 does not properly sanitize the headers from S/MIME protected MIME entities, allowing an attacker to control trusted headers...

8.2CVSS5.9AI score0.00217EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.6 views

SEPPmail Secure Email Gateway 安全漏洞

SEPPmail Secure Email Gateway is an email security gateway developed by the German company SEPPmail. Versions of SEPPmail Secure Email Gateway prior to version 15.0.1 contained security vulnerabilities. These vulnerabilities stemmed from incorrect transmission of PGP signature verification result...

6.9CVSS5.8AI score0.00157EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/04 12:0 a.m.8 views

SEPPmail Secure Email Gateway 安全漏洞

SEPPmail Secure Email Gateway is an email security gateway developed by the German company SEPPmail. Versions of SEPPmail Secure Email Gateway prior to version 15.0.1 contained security vulnerabilities, which were due to insufficient PDF encryption and password encoding. These vulnerabilities cou...

9.8CVSS6AI score0.0031EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/25 12:0 a.m.6 views

Cisco Secure Email and Web Manager RCE (cisco-sa-sma-attack-N9bf4)

According to its self-reported version, Cisco Secure Email and Web Manager is affected by a vulnerability. - A vulnerability in the Spam Quarantine feature of Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager could allow an unauthenticated, remote attack...

10CVSS6.6AI score0.2906EPSS
Exploits2References4
The Hacker News
The Hacker News
added 2026/01/16 5:38 a.m.8 views

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Cisco on Thursday released security updates for a maximum-severity security flaw impacting Cisco AsyncOS Software for Cisco Secure Email Gateway and Cisco Secure Email and Web Manager, nearly a month after the company disclosed that it had been exploited as a zero-day by a China-nexus advanced...

10CVSS7.8AI score0.2906EPSS
Exploits2
Rows per page
Query Builder