SmarterMail security update for CVE-2025-52691
Security Patch Release
Summary
Hide ▲
Show ▼
SmarterTools SmarterMail received a fix for CVE-2025-52691, a CVSS 10.0 arbitrary-file-upload flaw that could enable unauthenticated remote code execution across Build 9406 and earlier. Build 9413 addressed the issue, and Build 9483 was later recommended for optimal protection. Operators should upgrade promptly because the vulnerability can let an attacker upload arbitrary files to the mail server and potentially execute code.
Related Happenings
TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch Release
First: 22.05.2026 11:19
Last: 22.05.2026 11:19
Sources 1
About this happening:
**TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....
TrendAI Trend Micro’s enterprise business security patch release for CVE-2026-34926
Security Patch ReleaseAbout this happening: **TrendAI** released **Apex One** security updates after confirming a **zero-day** had been **exploited in the wild**, leaving **on-premises installations** at risk until patched....
Ivanti security patch release for CVE-2026-8043
Security Patch Release
First: 18.05.2026 13:54
Last: 18.05.2026 13:54
Sources 1
About this happening:
**Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...
Ivanti security patch release for CVE-2026-8043
Security Patch ReleaseAbout this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...
Progress security patch release for CVE-2026-2699
Security Patch Release
First: 02.04.2026 16:33
Last: 02.04.2026 16:33
Sources 1
About this happening:
**Progress** released **ShareFile 5.12.4** on **March 10** to fix **CVE-2026-2699** and **CVE-2026-2701** in the **Storage Zones Controller (SZC)** for **branch 5.x**. The update...
Progress security patch release for CVE-2026-2699
Security Patch ReleaseAbout this happening: **Progress** released **ShareFile 5.12.4** on **March 10** to fix **CVE-2026-2699** and **CVE-2026-2701** in the **Storage Zones Controller (SZC)** for **branch 5.x**. The update...
CISA SmarterMail remediation guidance for CVE-2026-24423
Advisory/Mitigation
First: 06.02.2026 19:16
Last: 06.02.2026 19:16
Sources 1
About this happening:
**SmarterMail** is at the center of a **CVE-2026-24423** remediation and exploitation wave: the flaw enables **unauthenticated remote code execution** in versions prior to **Build...
CISA SmarterMail remediation guidance for CVE-2026-24423
Advisory/MitigationAbout this happening: **SmarterMail** is at the center of a **CVE-2026-24423** remediation and exploitation wave: the flaw enables **unauthenticated remote code execution** in versions prior to **Build...
N8n 2.4.0 security update for sandbox-escape flaw (CVE-2026-25049)
Security Patch Release
First: 04.02.2026 23:14
Last: 04.02.2026 23:14
Sources 1
About this happening:
**n8n** released **version 2.4.0** on **January 12, 2026**, fixing a **sandbox-escape bypass** that could let authenticated workflow editors achieve **remote code execution** on a...
N8n 2.4.0 security update for sandbox-escape flaw (CVE-2026-25049)
Security Patch ReleaseAbout this happening: **n8n** released **version 2.4.0** on **January 12, 2026**, fixing a **sandbox-escape bypass** that could let authenticated workflow editors achieve **remote code execution** on a...
Timeline
-
30.12.2025 18:28 2 articles · 4mo ago
Build 9413 fixes CVE-2025-52691
Mitigation Patch UpdateSmarterTools releases Build 9413 for SmarterMail, addressing CVE-2025-52691 in versions Build 9406 and earlier.
Show sources
- CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution — thehackernews.com — 30.12.2025 18:28
- CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution — thehackernews.com — 30.12.2025 18:28
-
30.12.2025 18:28 1 articles · 4mo ago
Build 9483 recommended for CVE-2025-52691
Mitigation Patch UpdateSmarterTools recommends Build 9483 for SmarterMail as the latest protection after CVE-2025-52691, giving administrators a newer fixed release to deploy.
Show sources
- CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution — thehackernews.com — 30.12.2025 18:28
-
30.12.2025 18:28 1 articles · 4mo ago
CSA issues bulletin on SmarterMail CVE-2025-52691
Initial DisclosureCyber Security Agency of Singapore (CSA) issues a bulletin on SmarterTools SmarterMail CVE-2025-52691, a CVSS 10.0 arbitrary file upload flaw that could let an unauthenticated attacker upload arbitrary files to the mail server and potentially trigger remote code execution.
Show sources
- CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution — thehackernews.com — 30.12.2025 18:28