CVE-2024-41958

Name of the Vulnerable Software and Affected Versions mailcow: dockerized versions prior to 2024-07

Description A vulnerability has been discovered in the two-factor authentication (2FA) mechanism of mailcow: dockerized, an open source groupware/email suite based on docker. This flaw allows an authenticated attacker to bypass the 2FA protection, enabling unauthorized access to other accounts that are otherwise secured with 2FA. To exploit this vulnerability, the attacker must first have access to an account within the system and possess the credentials of the target account that has 2FA enabled. By leveraging these credentials, the attacker can circumvent the 2FA process and gain access to the protected account.

Recommendations For versions prior to 2024-07, upgrade to the 2024-07 release or later to address this issue. As a temporary workaround, consider restricting access to sensitive accounts and monitoring for suspicious activity until the upgrade can be applied.