CVE-2025-25198

Name of the Vulnerable Software and Affected Versions: mailcow: dockerized versions prior to 2025-01a

Description: A vulnerability in the password reset functionality of mailcow allows an attacker to manipulate the Host HTTP header to generate a password reset link pointing to an attacker-controlled domain. This can lead to account takeover if a user clicks the poisoned link.

Recommendations: For versions prior to 2025-01a, update to version 2025-01a to resolve the issue. As a temporary workaround, consider deactivating the password reset functionality by clearing Notification email sender and Notification email subject under System -> Configuration -> Options -> Password Settings.