CVE-2025-52691

Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution.

CVSS v3 10.0 CRITICAL

10.0^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-124/	Third Party Advisory
https://github.com/watchtowrlabs/watchTowr-vs-SmarterMail-CVE-2025-52691?ref=labs.watchtowr.com	Exploit Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-52691	US Government Resource

Configurations

Configuration 1 (hide)

cpe:2.3:a:smartertools:smartermail:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-12-29 03:15

Updated : 2026-01-27 15:28

NVD link : CVE-2025-52691

Mitre link : CVE-2025-52691

CVE.ORG link : CVE-2025-52691

JSON object : View

Products Affected

smartertools

smartermail

CWE

CWE-434

Unrestricted Upload of File with Dangerous Type

{"id": "CVE-2025-52691", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "5f57b9bf-260d-4433-bf07-b6a79e9bb7d4", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 10.0, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 3.9}]}, "published": "2025-12-29T03:15:42.837", "references": [{"url": "https://www.csa.gov.sg/alerts-and-advisories/alerts/al-2025-124/", "tags": ["Third Party Advisory"], "source": "5f57b9bf-260d-4433-bf07-b6a79e9bb7d4"}, {"url": "https://github.com/watchtowrlabs/watchTowr-vs-SmarterMail-CVE-2025-52691?ref=labs.watchtowr.com", "tags": ["Exploit", "Third Party Advisory"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}, {"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-52691", "tags": ["US Government Resource"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-434"}]}], "descriptions": [{"lang": "en", "value": "Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution."}], "lastModified": "2026-01-27T15:28:07.247", "cisaActionDue": "2026-02-16", "cisaExploitAdd": "2026-01-26", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:smartertools:smartermail:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9F4301A-C277-47F6-841D-386EDD24EE67", "versionEndExcluding": "100.0.9413"}], "operator": "OR"}]}], "sourceIdentifier": "5f57b9bf-260d-4433-bf07-b6a79e9bb7d4", "cisaRequiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.", "cisaVulnerabilityName": "SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability"}