cbcvebase.

Smartertools Smartermail vulnerabilities

28 known vulnerabilities affecting smartertools/smartermail.

Total CVEs
28
CISA KEV
3
actively exploited
Public exploits
7
Exploited in wild
3
Severity breakdown
CRITICAL6HIGH5MEDIUM17

Vulnerabilities

Page 1 of 2
CVE-2026-23760P1CRITICALCVSS 9.8KEVPoCRansomwarefixed in 100.0.95112026-01-22
CVE-2026-23760 [CRITICAL] CWE-288 CVE-2026-23760: SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system administrator accounts. An unauthenticated attacker can supply a target adminis
nvd
CVE-2026-24423P1CRITICALCVSS 9.8KEVPoCRansomwarefixed in 100.0.95112026-01-23
CVE-2026-24423 [CRITICAL] CWE-306 CVE-2026-24423: SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code executi SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the vulnerable application.
nvd
CVE-2025-52691P1CRITICALCVSS 10.0KEVPoCRansomwarefixed in 100.0.9413vSmarterMail versions Build 9406 and earlier2025-12-29
CVE-2025-52691 [CRITICAL] CWE-434 CVE-2025-52691: Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbit Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution.
nvd
CVE-2019-7214P1CRITICALCVSS 9.8PoC≥ 16.0.6345, < 16.3.69852019-04-24
CVE-2019-7214 [CRITICAL] CWE-502 CVE-2019-7214: SmarterTools SmarterMail 16.x before build 6985 allows deserialization of untrusted data. An unauthe SmarterTools SmarterMail 16.x before build 6985 allows deserialization of untrusted data. An unauthenticated attacker could run commands on the server when port 17001 was remotely accessible. This port is not accessible remotely by default after applying the Build 6985 patch.
nvd
CVE-2021-32234P2CRITICALCVSS 9.8≥ 16.0.6345, < 100.0.78032021-11-17
CVE-2021-32234 [CRITICAL] CVE-2021-32234: SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows remote code execution. SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows remote code execution.
nvd
CVE-2026-40514P3CRITICALCVSS 9.1fixed in 100.0.96102026-04-27
CVE-2026-40514 [CRITICAL] CWE-338 CVE-2026-40514: SmarterTools SmarterMail builds prior to 9610 contain a cryptographic weakness in the file and email SmarterTools SmarterMail builds prior to 9610 contain a cryptographic weakness in the file and email sharing endpoints that use DES-CBC encryption with keys and initialization vectors derived from System.Random seeded with insufficient entropy, reducing the seed space to approximately 19,000 possible values. An unauthenticated attacker can use the
nvd
CVE-2019-7213P3MEDIUMCVSS 6.5≥ 16.0.6345, < 16.3.69852019-04-24
CVE-2019-7213 [MEDIUM] CWE-22 CVE-2019-7213: SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user co SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user could delete arbitrary files or could create files in new folders in arbitrary locations on the mail server. This could lead to command execution on the server for instance by putting files inside the web directories.
nvd
CVE-2026-7807P3HIGHCVSS 8.8fixed in 100.0.95602026-05-08
CVE-2026-7807 [HIGH] CWE-22 CVE-2026-7807: SmarterTools SmarterMail builds prior to 9560 contain a local file inclusion vulnerability in the /a SmarterTools SmarterMail builds prior to 9560 contain a local file inclusion vulnerability in the /api/v1/report/summary/{type} API endpoint that allows authenticated users to read arbitrary .json files on the system. Attackers can exploit this vulnerability combined with weak encryption algorithms and hardcoded keys to decrypt and access stored password
nvd
CVE-2010-3486P3MEDIUMCVSS 5.0PoCv7.1.38762010-09-22
CVE-2010-3486 [MEDIUM] CWE-22 CVE-2010-3486: Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote at Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) %255c (double-encoded backslash) in the name parameter.
nvd
CVE-2019-7212P3HIGHCVSS 8.2≥ 16.0.6345, < 16.3.69852019-04-24
CVE-2019-7212 [HIGH] CWE-798 CVE-2019-7212: SmarterTools SmarterMail 16.x before build 6985 has hardcoded secret keys. An unauthenticated attack SmarterTools SmarterMail 16.x before build 6985 has hardcoded secret keys. An unauthenticated attacker could access other users’ emails and file attachments. It was also possible to interact with mailing lists.
nvd
CVE-2020-29548P3HIGHCVSS 8.1≤ 100.0.75372021-08-17
CVE-2020-29548 [HIGH] CWE-77 CVE-2020-29548: An issue was discovered in SmarterTools SmarterMail through 100.0.7537. Meddler-in-the-middle attack An issue was discovered in SmarterTools SmarterMail through 100.0.7537. Meddler-in-the-middle attackers can pipeline commands after a POP3 STLS command, injecting plaintext commands into an encrypted user session.
nvd
CVE-2008-1854P4MEDIUMCVSS 5.0PoCv5.0.29992008-04-16
CVE-2008-1854 [MEDIUM] CVE-2008-1854: Unspecified vulnerability in SmarterMail Web Server (SMWebSvr.exe) in SmarterMail 5.0.2999 allows re Unspecified vulnerability in SmarterMail Web Server (SMWebSvr.exe) in SmarterMail 5.0.2999 allows remote attackers to cause a denial of service (service termination) via a long HTTP (1) GET, (2) HEAD, (3) PUT, (4) POST, or (5) TRACE request. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd
CVE-2012-2578P4MEDIUMCVSS 4.3PoCv9.22012-09-19
CVE-2012-2578 [MEDIUM] CWE-79 CVE-2012-2578: Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote attackers to inj Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a JavaScript alert function used in conjunction with the fromCharCode method, (2) a SCRIPT element, (3) a Cascading Style Sheets (CSS) expression property in the STYLE attribute of an a
nvd
CVE-2026-26930P3HIGHCVSS 7.2fixed in 95262026-02-16
CVE-2026-26930 [HIGH] CWE-79 CVE-2026-26930: SmarterTools SmarterMail before 9526 allows XSS via MAPI requests. SmarterTools SmarterMail before 9526 allows XSS via MAPI requests.
nvd
CVE-2026-25067P4MEDIUMCVSS 5.3fixed in 100.0.95182026-01-29
CVE-2026-25067 [MEDIUM] CWE-706 CVE-2026-25067: SmarterTools SmarterMail versions prior to build 9518 contain an unauthenticated path coercion vuln SmarterTools SmarterMail versions prior to build 9518 contain an unauthenticated path coercion vulnerability in the background-of-the-day preview endpoint. The application base64-decodes attacker-supplied input and uses it as a filesystem path without validation. On Windows systems, this allows UNC paths to be resolved, causing the SmarterMail servic
nvd
CVE-2019-7211P4MEDIUMCVSS 6.1≥ 16.0.6345, < 16.3.69552019-04-24
CVE-2019-7211 [MEDIUM] CWE-79 CVE-2019-7211: SmarterTools SmarterMail 16.x before build 6995 has stored XSS. JavaScript code could be executed on SmarterTools SmarterMail 16.x before build 6995 has stored XSS. JavaScript code could be executed on the application by opening a malicious email or when viewing a malicious file attachment.
nvd
CVE-2023-48114P4MEDIUMCVSS 5.4≥ 16.0.8495, < 16.0.87472023-12-21
CVE-2023-48114 [MEDIUM] CWE-79 CVE-2023-48114: SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS by using image/svg+xml and SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS by using image/svg+xml and an uploaded SVG document. This occurs because the application tries to allow youtube.com URLs, but actually allows youtube.com followed by an @ character and an attacker-controlled domain name.
nvd
CVE-2004-2583P4HIGHCVSS 7.8v1.6.1511v1.6.15292004-12-31
CVE-2004-2583 [HIGH] CVE-2004-2583: SMTP service in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a de SMTP service in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous open connections to TCP port 25.
nvd
CVE-2023-48115P4MEDIUMCVSS 5.4≥ 16.0.8495, < 16.0.87472023-12-21
CVE-2023-48115 [MEDIUM] CWE-79 CVE-2023-48115: SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored DOM XSS because an XSS protecti SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored DOM XSS because an XSS protection mechanism is skipped when messageHTML and messagePlainText are set in the same request.
nvd
CVE-2023-48116P4MEDIUMCVSS 5.4≥ 16.0.8495, < 16.0.87472023-12-21
CVE-2023-48116 [MEDIUM] CWE-79 CVE-2023-48116: SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS via a crafted description o SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS via a crafted description of a Calendar appointment.
nvd
Smartertools Smartermail vulnerabilities | cvebase