CVE-2026-32661
9.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Stack-based buffer overflow vulnerability exists in GUARDIANWALL MailSuite and GUARDIANWALL Mail Security Cloud (SaaS version). If a remote attacker sends a specially crafted request to the product's web service, arbitrary code may be executed when the product is configured to run pop3wallpasswd with grdnwww user privilege.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Canon Marketing Japan Inc. | GUARDIANWALL MailSuite (On-premises version) | Ver 1.4.00 to Ver 2.4.26 | affected |
| Canon Marketing Japan Inc. | GUARDIANWALL Mail Security Cloud (SaaS version) | versions before the maintenance on April 30 | affected |
| Canon Marketing Japan Inc. | GUARDIANWALL Mail Security Cloud (SaaS version) | 2026 | affected |
Weaknesses
- CWE-121: Stack-based buffer overflow
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: yes
- Technical Impact: total
References
- https://security-support.canon-its.jp/info_and_news/show/804?site_domain=GUARDIANWALL
- https://jvn.jp/en/jp/JVN35567473/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.