CVE-2026-38728

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published May 15, 2026

Vendor unknown

Description

An issue in Nodemailer smtp_server before v.3.18.3 allows a remote attacker to cause a denial of service via the SMTPStream._write, lib/smtp-stream.js components

References

https://bytecreator.dev/blog/CVE-2026-38728
https://github.com/nodemailer/smtp-server
https://github.com/nodemailer/smtp-server/releases/tag/v3.18.3