Securityweek
Ransomware Exploits Critical SmarterMail Vulnerability CVE-2026-24423
First seen 6 Feb 2026, 18:16 UTC
•



+22
•71% similarity
•68.6
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
A critical vulnerability in SmarterTools' SmarterMail, identified as CVE-2026-24423, is being actively exploited in ransomware attacks. The flaw allows unauthenticated remote code execution via malicious HTTP requests, affecting users of the email and collaboration server. CISA added this vulnerability to its Known Exploited Vulnerabilities catalog on February 5, 2026.
ThreatCluster AI