Security News > 2024 > June > Mailcow Mail Server Flaws Expose Servers to Remote Code Execution
2024-06-19 07:36
Two security vulnerabilities have been disclosed in the Mailcow open-source mail server suite that could be exploited by malicious actors to achieve arbitrary code execution on susceptible instances. Both shortcomings impact all versions of the software prior to version 2024-04, which was released on April 4, 2024. The issues were responsibly disclosed by SonarSource on March 22, 2024. The flaws
News URL
https://thehackernews.com/2024/06/mailcow-mail-server-flaws-expose.html
Related news
- Rsync vulnerabilities allow remote code execution on servers, patch quickly! (source)
- Critical RCE Flaw in GFI KerioControl Allows Remote Code Execution via CRLF Injection (source)
- Over 660,000 Rsync servers exposed to code execution attacks (source)
- Meta's Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks (source)
- Critical Cacti Security Flaw (CVE-2025-22604) Enables Remote Code Execution (source)
- New “whoAMI” Attack Exploits AWS AMI Name Confusion for Remote Code Execution (source)