216.73.216.133

CVE-2026-44129

· Published 08/05/2026 14:16 · Modified 08/05/2026 15:51

Labels: CVE-2026-44129 2026-05-08CVE-2026-44129CWE-1336[email protected]

Essential information

Published
08/05/2026 14:16
Modified
08/05/2026 15:51
Author
Creator
CVSS
8.3 HIGH (v3) 8.3 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

SEPPmail Secure Email Gateway before version 15.0.4 contains a server-side template injection vulnerability in the new GINA UI because an endpoint accepts attacker-controlled template, allowing remote attackers to execute arbitrary template expressions and potentially achieve remote code execution depending on the enabled template plugins.

NVD status

Status
Deferred — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
seppmail / secure email gateway cpe:2.3:a:seppmail:secure_email_gateway:<15.0.4:*:*:*:*:*:*:*

References