Caleb Sargent

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned in the provided descriptions. **Description** A vulnerability in multi-tenant hosting allows an authenticated sender to spoof the identity of a shared, hosted domain, thus bypassing security measures provided by DMARC (or SPF or DKIM) policies. This issue arises because hosted services do not verify the sender of an email against authenticated users, enabling an attacker to spoof the identity of another user's email address. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** No specific software or versions are mentioned. **Description** A vulnerability exists in the use of shared SPF records in multi-tenant hosting providers, allowing attackers to use network authorization to be abused to spoof the email identity of the sender. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.