Hosted on MSN

SmarterMail patches critical unauthenticated RCE flaw rated CVSS 9.3

SmarterMail administrators have an urgent security update to prioritize: a critical unauthenticated remote code execution (RCE) vulnerability with a CVSS score of 9.3 has been patched. The flaw is ...
Bleeping Computer

SmarterMail auth bypass flaw now exploited to hijack admin accounts

Hackers began exploiting an authentication bypass vulnerability in SmarterTools' SmarterMail email server and collaboration tool that allows resetting admin passwords. An authentication bypass ...
TechRadar

This SmarterMail vulnerability allows Remote Code Execution - here's what we know

SmarterMail patched CVE-2025-52691, a maximum-severity RCE flaw allowing unauthenticated arbitrary file uploads Exploitation could let attackers deploy web shells or malware, steal data, and pivot ...
Bleeping Computer

Hackers breach SmarterTools network using flaw in its own software

SmarterTools confirmed last week that the Warlock ransomware gang breached its network after compromising an email system, but it did not impact business applications or account data. The company's ...
heise online

Update now! Attackers take over SmarterMail instances as admin

Currently, attackers are targeting SmarterMail instances. If attacks are successful, they gain full control as administrators. A repaired version is available for download. All three security ...
Dark Reading

Warlock Gang Breaches SmarterTools Via SmarterMail Bugs

SmarterTools recently disclosed a breach that occurred as a result of vulnerabilities the company addressed last month. The software company's product was compromised by Warlock, a ransomware group ...
PC Magazine

SmarterMail Review

SmarterMail is easy to master email server software that is powerful enough to handle a huge email workload. PCMag UK Jun 13, 2018 Table of Contents Smartermail Admin Screen Smartermail Settings ...