5.3

CVSS4.0

CVE-2026-29135 - Webmail Password Tag Sanitization Bypass

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to craft a password-tag that bypasses subject sanitization.

πŸ“… Published: April 2, 2026, 8:31 a.m. πŸ”„ Last Modified: April 2, 2026, 8:31 a.m.

5.3

CVSS4.0

CVE-2026-29134 - GINA Domain Switch

SEPPmail Secure Email Gateway before version 15.0.3 allows an external user to modify GINA webdomain metadata and bypass per-domain restrictions.

πŸ“… Published: April 2, 2026, 8:29 a.m. πŸ”„ Last Modified: April 2, 2026, 8:29 a.m.

7.7

CVSS4.0

CVE-2026-29140 - S/MIME Signature Additional Certificate

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to cause attacker-controlled certificates to be used for future encryption to a victim by adding the certificates to S/MIME signatures.

πŸ“… Published: April 2, 2026, 8:27 a.m. πŸ”„ Last Modified: April 2, 2026, 8:27 a.m.

5.3

CVSS4.0

CVE-2026-29133 - UID Regex Bypass

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to upload PGP keys with UIDs that do not match their email address.

πŸ“… Published: April 2, 2026, 8:26 a.m. πŸ”„ Last Modified: April 2, 2026, 8:26 a.m.

6.3

CVSS4.0

CVE-2026-29132 - ESWmail-Verify Bypass

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker with access to a victim's GINA account to bypass a second-password check and read protected emails.

πŸ“… Published: April 2, 2026, 8:25 a.m. πŸ”„ Last Modified: April 2, 2026, 8:25 a.m.
Load More Vulnerability
avatar

Mehmet Ince

@mdisec

CVE stats coming here

avatar

Nuri Γ‡ilengir

@ncilengir

CVE stats coming here

avatar

@aydinnyunus

CVE stats coming here

avatar

Onurcan Genç

@onurcangnc

CVE stats coming here

avatar

Seyit Sigirci

@h3xecute

CVE stats coming here

avatar

Ali Δ°ltizar

@iltosec

CVE stats coming here

avatar

@b3rsec

CVE stats coming here

avatar

@furkank

CVE stats coming here

avatar

kutaysec

@kutaysec

CVE stats coming here