PT-2026-22889 · Seppmail · Seppmail Secure Email Gateway
Andris Suter-Dörig
+2
·
Published
2026-03-04
·
Updated
2026-03-05
·
CVE-2026-27443
CVSS v4.0
8.2
High
| Vector | AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N |
Name of the Vulnerable Software and Affected Versions
SEPPmail Secure Email Gateway versions prior to 15.0.1
Description
The SEPPmail Secure Email Gateway does not correctly handle headers within S/MIME protected MIME entities. This allows an attacker to manipulate trusted headers. The issue involves improper sanitization of headers, potentially leading to control over trusted header values.
Recommendations
Update to SEPPmail Secure Email Gateway version 15.0.1 or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Seppmail Secure Email Gateway