CVE-2026-44128

Vulnerability Description

SEPPmail Secure Email Gateway before version 15.0.2.1 allows unauthenticated remote code execution in the new GINA UI because an endpoint passes attacker-controlled input from a parameter to Perl's eval.

Vulnerability Details

Published Date

May 08, 2026

Last Modified

May 08, 2026

CWE ID

CWE-95

Source

NVD

Vendor

SEPPmail AG

Product

Secure Email Gateway

External References

https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#security

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment