PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network

The threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services AWS, Google Cloud, and Microsoft Azure to create a covert SMTP email relay network. "Compromised business servers across the U.S., Europe, and Asia were quietly converted into SMTP proxies, verified f...

CVE-2026-49267

Apache Airflow's EmailOperator and the underlying airflow.utils.email helpers established SMTP STARTTLS connections without verifying the remote certificate when the deployment used email smtpstarttls=True without email smtpssl. An attacker positioned between the worker and the configured SMTP...

PT-2026-45382

Name of the Vulnerable Software and Affected Versions Apache Airflow versions prior to 3.2.2 Description The EmailOperator and airflow.utils.email helpers establish SMTP STARTTLS connections without verifying the remote certificate when the deployment is configured with smtp starttls=True and smt...

CVE-1999-0512

A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers...

EUVD-2003-0311

Malware in sbrugna...

EUVD-2018-1026

Malware in sbrugna...

azure-smtp-relay (>=1.0.0 <=1.0.6), mailrise (>=1.3.0 <=1.4.0) +4 more potentially affected by CVE-2024-27305 via aiosmtpd (>=1.2.0 <=1.4.4.post2)

aiosmtpd PYPI version =1.2.0, =1.0.0, =1.3.0, =0.0.1, =0.2.5, =0.3.3 - yades-smtp =0.1.0 Source cves: CVE-2024-27305 Source advisory: OSV:GHSA-PR2M-PX7J-XG65...

azure-smtp-relay (>=1.0.0 <=1.0.6), mailrise (>=1.3.0 <=1.4.0) +4 more potentially affected by CVE-2024-27305 via aiosmtpd (>=1.2.0 <=1.4.4.post2)

aiosmtpd PYPI version =1.2.0, =1.0.0, =1.3.0, =0.0.1, =0.2.5, =0.3.3 - yades-smtp =0.1.0 Source cves: CVE-2024-27305 Source advisory: OSV:PYSEC-2024-221...

cve_manager_VS - A Collection Of Python Apps And Shell Scripts To Email An Xlsx Spreadsheet Of New Vulnerabilities In The NIST CVE Database And Their Associated Products On A Daily Schedule

A collection of python apps and shell scripts to email an xlsx spreadsheet of new vulnerabilities in the NIST CVE database and their associated products on a daily schedule. The spreadsheet can then be manually interpreted for risk to your specific organization. Based off of an opensource product...

CVE-2018-0203

A vulnerability in the SMTP relay of Cisco Unity Connection could allow an unauthenticated, remote attacker to send unsolicited email messages, aka a Mail Relay Vulnerability. The vulnerability is due to improper handling of domain information in the affected software. An unauthenticated, remote...

Design/Logic Flaw

A vulnerability in the SMTP relay of Cisco Unity Connection could allow an unauthenticated, remote attacker to send unsolicited email messages, aka a Mail Relay Vulnerability. The vulnerability is due to improper handling of domain information in the affected software. An unauthenticated, remote...

CVE-2018-0203

A vulnerability in the SMTP relay of Cisco Unity Connection could allow an unauthenticated, remote attacker to send unsolicited email messages, aka a Mail Relay Vulnerability. The vulnerability is due to improper handling of domain information in the affected software. An unauthenticated, remote...

CVE-2018-0203

A vulnerability in the SMTP relay of Cisco Unity Connection could allow an unauthenticated, remote attacker to send unsolicited email messages, aka a Mail Relay Vulnerability. The vulnerability is due to improper handling of domain information in the affected software. An unauthenticated, remote...

Cisco Unity Connection Mail Relay Vulnerability

A vulnerability in the SMTP relay of Cisco Unity Connection could allow an unauthenticated, remote attacker to send unsolicited email messages. The vulnerability is due to improper handling of domain information in the affected software. An unauthenticated, remote attacker could exploit this...

How to configure Email Notifications when using Gmail or Google Apps Mail

Solution Select the product below to be taken to the product-specific information for using Google Gmail to send email notifications. Veeam Backup & Replication v12 Veeam Backup & Replication v13 Veeam ONE v12 Veeam ONE v13 Veeam Backup for Microsoft 365 v7+ Veeam Agent for Microsoft Windows v6+...

Cobalt Raq3 PopRelayD Arbitrary SMTP Relay Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2986/info poprelayd is a script that parses /var/log/maillog for valid pop logins, and based upon the login of a client, allows the person logged into the pop3 service to also send email from the ip address they're...

Plesk 8.6.0 authentication flaw allows to gain virtual user priviledges

Hello, the reported vulnerability allows logins to mail and probably other services protected by plesk authentication modules on at least the current Plesk 8.6.0 Unix/Linux and could eg. be used for relaying spam through gained smtp auth priviledges. Only systems which allow short mail login name...

MTA Open Mail Relaying Allowed (thorough test)

Nessus has detected that the remote SMTP server is insufficiently protected against mail relaying. This issue allows any spammer to use your mail server to send their mail to the world, thus flooding your network bandwidth and possibly getting your mail server blacklisted. C Tenable Network...

CVE-2003-0316

Venturi Client before 2.2, as used in certain Fourelle and Venturi Wireless products, can be used as an open proxy for various protocols, including an open relay for SMTP, which allows it to be abused by spammers...

CVE-2003-0316

CVE-2003-0316 concerns Venturi Client before version 2.2, used in Fourelle and Venturi Wireless products, which can function as an open proxy/relay for various protocols, including SMTP, enabling abuse by spammers. The CVE description and NVD entry confirm the issue and its network scope; OpenVAS...