SmarterMail Authentication Bypass Vulnerability Actively Exploited

SmarterMail Authentication Bypass Vulnerability Actively Exploited

First seen 24 Jan 2026, 02:39 UTC BleepingcomputerScworld 83% similarity 34.8

Article Content

Browse articles
ThreatCluster

A critical authentication bypass vulnerability in SmarterTools' SmarterMail, identified as WT-2026-0001, is being actively exploited. The flaw allows unauthenticated attackers to reset admin passwords and gain full privileges. SmarterTools released a patch on January 15, 2026, but attackers continue to target unpatched systems.

ThreatCluster AI

Community

Browse all →