CVE-2026-27444

Summary

SEPPmail Secure Email Gateway before version 15.0.1 incorrectly interprets email addresses in the email headers, causing an interpretation conflict with other mail infrastructure that allows an attacker to fake the source of the email or decrypt it.

Affected Software

VendorProductVersion RangeStatus
SEPPmailSecure Email Gateway0 < 15.0.1affected

Weaknesses

  • CWE-436: CWE-436 Interpretation Conflict

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References