RCE in Seppmail Ag Secure Email Gateway
CVE-2026-44128
SEPPmail Secure Email Gateway before version 15.0.2.1 allows unauthenticated remote code execution in the new GINA UI because an endpoint passes attacker-controlled input from a parameter to Perl's eval.
EPSS: 0.002 (35.7th percentile) — read the EPSS interpretation.
Affected products
- Seppmail Ag Secure Email Gateway — versions 0