SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
ID: 801dc436-8021-59f4-9f57-605a37b8978c
STIX ID: report--801dc436-8021-59f4-9f57-605a37b8978c
Feed Name: The Hacker News
Threat Score
Critical security flaws were disclosed in the SEPPMail Secure E-Mail Gateway that include unauthenticated remote code execution, path traversal, deserialization, eval injection, and template-engine injection vulnerabilities allowing attackers to read arbitrary mail, overwrite files (e.g., syslog configuration) and achieve full appliance takeover; fixes have been issued across versions 15.0.2.1–15.0.4.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.