Openfind Mailgates
5 CVEs affecting Openfind Mailgates. Latest disclosed: 2026-04-16. Critical: 2, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-6350 | Critical | 9.8 | 2026-04-16 | MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the program's e… |
CVE-2020-12782 | Critical | 9.8 | 2020-06-23 | Openfind MailGates contains a Command Injection flaw, when receiving email with specific strings, malicious code in the mail attachment will be triggered and g… |
CVE-2020-25849 | High | 8.8 | 2020-11-01 | MailGates and MailAudit products contain Command Injection flaw, which can be used to inject and execute system commands from the cgi parameter after attackers… |
CVE-2026-6351 | High | 7.5 | 2026-04-16 | MailGates/MailAudit developed by Openfind has a CRLF Injection vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read s… |
CVE-2024-6739 | Medium | 5.3 | 2024-07-15 | The session cookie in MailGates and MailAudit from Openfind does not have the HttpOnly flag enabled, allowing remote attackers to potentially steal the session… |