Hosted on MSN

This SmarterMail vulnerability allows remote code execution - here's what we know

SmarterMail patched CVE-2025-52691, a maximum-severity RCE flaw allowing unauthenticated arbitrary file uploads Exploitation could let attackers deploy web shells or malware, steal data, and pivot ...
Dark Reading

Patch Confusion for Critical Exim Bug Puts Email Servers at Risk — Again

A disorderly disclosure process last week led to the release of information on six vulnerabilities in the Exim mail transfer agent — with the disclosures coming five days before the maintainers ...
Ars Technica

Spies hack high-value mail servers using an exploit from yesteryear

Threat actors, likely supported by the Russian government, hacked multiple high-value mail servers around the world by exploiting XSS vulnerabilities, a class of bug that was among the most commonly ...