CVE-2026-2493

Name of the Vulnerable Software and Affected Versions IceWarp Servers (affected versions not specified)

Description IceWarp Servers are experiencing a directory traversal issue that allows unauthorized disclosure of sensitive information. This issue is being actively exploited and does not require authentication. The exploitation is potentially linked to the FANCY BEAR threat actor. The vulnerability allows remote attackers to access sensitive data through a directory traversal mechanism.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.