CVE-2022-41871

CVSS 6 MEDIUMEPSS 0.9%CWE-78

SEPPmail through 12.1.17 allows command injection within the Admin Portal. An authenticated attacker is able to execute arbitrary code in the context of the user root.

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L

Affected products

SEPPmail · SEPPmail

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://code-white.com/public-vulnerability-list/https://www.seppmail.com/products/