CVE-2026-29139

Published: Apr 02, 2026 Last Modified: Apr 02, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,8

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Confidentiality: N/A

Integrity: N/A

Availability: N/A

Description

AI Translation Available

SEPPmail Secure Email Gateway before version 15.0.3 allows account takeover by abusing GINA account initialization to reset a victim account password.

288

Authentication Bypass Using an Alternate Path or Channel

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control

Potential Impacts:

Bypass Protection Mechanism

Applicable Platforms

Technologies: Not Technology-Specific, Web Based

View CWE Details

https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html…

https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#seppmail-vulnerabil…

CVE-2026-29139

Description

Authentication Bypass Using an Alternate Path or Channel

Common Consequences

Applicable Platforms

Iscriviti alla newsletter