🔐 CVE Alert

CVE-2026-8811

UNKNOWN 0.0

Path traversal in PDF generation module

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

SEPPmail versions before 15.0.5 allow improper handling of attachment filenames during encrypted PDF generation. An attacker can exploit this to create new files outside the intended directory, potentially placing files in web-accessible locations.

CWE CWE-22
Vendor seppmail ag
Product secure email gateway
Published Jun 18, 2026
Stay Ahead of the Next One

Get instant alerts for seppmail ag secure email gateway

Be the first to know when new unknown vulnerabilities affecting seppmail ag secure email gateway are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

SEPPmail AG / Secure Email Gateway
0 < 15.0.5

References

NVD ↗ CVE.org ↗ EPSS Data ↗
downloads.seppmail.com: https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#possible-path-traversal-vulnerability

Credits

Andris Suter-Dörig (ETH Zürich, Applied Crypto Group) Olivier Becker (InfoGuard AG)