CVE-2026-41319
Description
MailKit is a cross-platform mail client library built on top of MimeKit. A STARTTLS Response Injection vulnerability in versions prior to 4.16.0 allows a Man-in-the-Middle attacker to inject arbitrary protocol responses across the plaintext-to-TLS trust boundary, enabling SASL authentication mechanism downgrade (e.g., forcing PLAIN instead of SCRAM-SHA-256). The internal read buffer in SmtpStream, ImapStream, and Pop3Stream is not flushed when the underlying stream is replaced with SslStream during STARTTLS upgrade, causing pre-TLS attacker-injected data to be processed as trusted post-TLS responses. Version 4.16.0 patches the issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
MailKitNuGet | < 4.16.0 | 4.16.0 |
Affected products
2Patches
Vulnerability mechanics
References
3- github.com/jstedfast/MailKit/security/advisories/GHSA-9j88-vvj5-vhgrnvdExploitVendor AdvisoryWEB
- github.com/advisories/GHSA-9j88-vvj5-vhgrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-41319ghsaADVISORY
News mentions
0No linked articles in our index yet.