πŸ” CVE Alert

CVE-2026-27442

UNKNOWN 0.0

zip_attachments Path Traversal

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

The GINA web interface in SEPPmail Secure Email Gateway before version 15.0.1 does not properly check attachment filenames in GINA-encrypted emails, allowing an attacker to access files on the gateway.

CWE CWE-22
Vendor seppmail
Product secure email gateway
Published Mar 4, 2026
Last Updated Mar 4, 2026
Stay Ahead of the Next One

Get instant alerts for seppmail secure email gateway

Be the first to know when new unknown vulnerabilities affecting seppmail secure email gateway are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

SEPPmail / Secure Email Gateway
0 < 15.0.1

References

NVD β†— CVE.org β†— EPSS Data β†—
downloads.seppmail.com: https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#seppmail-vulnerability-disclosure

Credits

Andris Suter-DΓΆrig Matteo Scarlata Kenny Paterson