Critical severityNVD Advisory· Published May 8, 2026· Updated May 18, 2026
CVE-2026-44125
CVE-2026-44125
Description
SEPPmail Secure Email Gateway before version 15.0.4 fails to enforce authorization checks for multiple endpoints in the new GINA UI, allowing unauthenticated remote attackers to access functionality that should require a valid session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <15.0.4
Patches
Vulnerability mechanics
References
2News mentions
1- SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic AccessThe Hacker News · May 19, 2026