Security News > 2024 > June > Mailcow Mail Server Flaws Expose Servers to Remote Code Execution
2024-06-19 07:36
Two security vulnerabilities have been disclosed in the Mailcow open-source mail server suite that could be exploited by malicious actors to achieve arbitrary code execution on susceptible instances. Both shortcomings impact all versions of the software prior to version 2024-04, which was released on April 4, 2024. The issues were responsibly disclosed by SonarSource on March 22, 2024. The flaws
News URL
https://thehackernews.com/2024/06/mailcow-mail-server-flaws-expose.html
Related news
- Apache fixes remote code execution bypass in Tomcat web server (source)
- Rsync vulnerabilities allow remote code execution on servers, patch quickly! (source)
- Sophos Firewall vulnerable to critical remote code execution flaw (source)
- Sophos discloses critical Firewall remote code execution flaw (source)
- Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
- Over 660,000 Rsync servers exposed to code execution attacks (source)