Vulnerability Description
SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through an unauthenticated endpoint in the new GINA UI, allowing remote attackers to obtain sensitive system information.
Related Weaknesses (CWE)
References
- https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#security
- https://labs.infoguard.ch/posts/seppmail_secure_e-mail_gateway_rce_vulnerabiliti
FAQ
What is CVE-2026-7864?
CVE-2026-7864 is a documented vulnerability. SEPPmail Secure Email Gateway before version 15.0.4 exposes server environment variables through an unauthenticated endpoint in the new GINA UI, allowing remote attackers to obtain sensitive system in...
How severe is CVE-2026-7864?
CVSS scoring is not yet available for CVE-2026-7864. Check NVD for updates.
Is there a patch for CVE-2026-7864?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.