Critical SmarterMail Vulnerability Allows Unauthenticated Remote Code Execution

Critical SmarterMail Vulnerability Allows Unauthenticated Remote Code Execution

First seen 31 Dec 2025, 09:12 UTC Csa.SgThecyberexpressWebpronewsBroadcom 80% similarity 72.6

Article Content

Browse articles
ThreatCluster

The Cyber Security Agency of Singapore (CSA) has issued a high-priority alert regarding a critical vulnerability in SmarterMail, tracked as CVE-2025-52691. This flaw allows attackers to execute arbitrary code remotely without authentication, affecting organizations using the enterprise email platform. SmarterTools has released security updates to address this vulnerability, urging users to upgrade to SmarterMail version Build 9413 immediately.

ThreatCluster AI

Community

Browse all →