← back
CVE-2026-27444

Header Email Address Parsing

CVSS 7.8 HIGHEPSS 0.2%CWE-436
SEPPmail Secure Email Gateway before version 15.0.1 incorrectly interprets email addresses in the email headers, causing an interpretation conflict with other mail infrastructure that allows an attacker to fake the source of the email or decrypt it.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:H/SA:N
Affected products
SEPPmail · Secure Email Gateway

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#seppmail-vulnerability-disclosure