Medium severityNVD Advisory· Published May 8, 2026· Updated May 18, 2026
CVE-2026-7864
CVE-2026-7864
Description
SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through an unauthenticated endpoint in the new GINA UI, allowing remote attackers to obtain sensitive system information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <15.0.4
Patches
Vulnerability mechanics
References
2News mentions
1- SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic AccessThe Hacker News · May 19, 2026