ГлавнаяУязвимости → CVE-2025-52691
10критическая

CVE-2025-52691

Описание

Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution.

Затрагиваемое ПО
Smartertools Smartermail
CVSS
Балл10 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-124/https://github.com/watchtowrlabs/watchTowr-vs-SmarterMail-CVE-2025-52691?ref=labs.watchtowr.comhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-52691