High severity8.1NVD Advisory· Published Apr 16, 2026· Updated May 19, 2026
CVE-2026-41113
CVE-2026-41113
Description
sagredo qmail before 2026.04.07 allows tls_quit remote code execution because of popen in notlshosts_auto in qmail-remote.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: before 2026.04.07
Patches
Vulnerability mechanics
References
6- www.openwall.com/lists/oss-security/2026/04/18/5nvd
- blog.calif.io/p/we-asked-claude-to-audit-sagredosnvd
- github.com/califio/publications/tree/main/MADBugs/qmailnvd
- github.com/sagredo-dev/qmail/commit/749f607f6885e3d01b36f2647d7a1db88f1ef741nvd
- github.com/sagredo-dev/qmail/pull/42nvd
- github.com/sagredo-dev/qmail/releases/tag/v2026.04.07nvd
News mentions
0No linked articles in our index yet.