Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA SmarterMail remediation guidance for CVE-2026-24423

Advisory/Mitigation
First reported
Last updated
Happening score
H score 56
1 unique sources, 2 articles

Summary

Hide ▲

SmarterMail is at the center of a CVE-2026-24423 remediation and exploitation wave: the flaw enables unauthenticated remote code execution in versions prior to Build 9511, while CVE-2026-23760 adds authentication-bypass risk on exposed email servers. CISA added CVE-2026-24423 to the Known Exploited Vulnerabilities catalog after confirming active ransomware exploitation, and directed federal agencies and other BOD 22-01 entities to apply updates, use vendor mitigations, or stop using the product by February 26, 2026.

Cases

SmarterMail RCE, password-reset bypass, and ransomware response (5)

Related Happenings

Ghost CMS CVE-2026-26980 ClickFix campaign

Campaign
First: 24.05.2026 17:12 Last: 24.05.2026 17:12 Sources 1

About this happening: A **large-scale campaign** is exploiting **CVE-2026-26980** in **Ghost CMS** to plant malicious JavaScript and drive **ClickFix** lure pages, putting exposed sites and their visit...

Open Happening

PraisonAI missing-authentication flaw actively probed (CVE-2026-44338)

Vulnerability
First: 14.05.2026 14:40 Last: 14.05.2026 14:40 Sources 1

About this happening: Within **hours of disclosure**, **PraisonAI CVE-2026-44338** was being **probed on internet-exposed instances**, creating **unauthenticated access** risk for the legacy Flask API...

Open Happening

CPanel CVE-2026-41940 mitigation guidance

Advisory/Mitigation
First: 30.04.2026 14:40 Last: 30.04.2026 14:40 Sources 1

About this happening: cPanel issued mitigation guidance for **CVE-2026-41940** after fixes became available for **cPanel, WHM, and WP Squared**, urging customers to restart **cpsrvd** to reduce exposur...

Open Happening

Microsoft SharePoint actively exploited unauthenticated RCE (CVE-2026-20963)

Vulnerability
First: 19.03.2026 12:06 Last: 19.03.2026 12:06 Sources 1

About this happening: **CVE-2026-20963** is now being exploited in attacks against **Microsoft SharePoint** deployments, creating **unauthenticated remote code execution** risk for **unpatched servers*...

Open Happening

CISA patch guidance for Zimbra and SharePoint flaws

Advisory/Mitigation
First: 19.03.2026 08:05 Last: 19.03.2026 08:05 Sources 1

About this happening: **CISA** told **FCEB agencies** to patch **two actively exploited vulnerabilities** in **Synacor Zimbra Collaboration Suite (ZCS)** and **Microsoft Office SharePoint**, creating i...

Open Happening

Timeline

  1. 06.02.2026 19:16 2 articles · 3mo ago

    SmarterTools fixes CVE-2026-24423 in SmarterMail Build 9511

    Mitigation Patch Update

    SmarterTools releases SmarterMail Build 9511 on January 15, 2026, fixing CVE-2026-24423 in versions prior to build 9511 and closing the ConnectToHub API path that could permit unauthenticated remote code execution.

    Show sources
    Open in new tab
  2. 06.02.2026 19:16 1 articles · 3mo ago

    CISA warns of exploited SmarterMail flaw and sets remediation deadline

    Legal Policy Action Update

    CISA warns that ransomware actors are exploiting CVE-2026-24423 in SmarterMail, adds the vulnerability to the Known Exploited Vulnerabilities catalog, and directs federal agencies and BOD 22-01 entities to apply security updates and vendor-suggested mitigations or stop using the product by February 26, 2026.

    Show sources
    Open in new tab