CVE-2026-8811

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 18, 2026

Vendor unknown

Description

SEPPmail versions before 15.0.5 allow improper handling of attachment filenames during encrypted PDF generation. An attacker can exploit this to create new files outside the intended directory, potentially placing files in web-accessible locations.

References

https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#possible-path-traversal-vulnerability