CVE-2026-29144

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to bypass subject sanitization and forge security tags usin

5.3MEDIUM

CVE-2026-29143

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 does not properly authenticate the inner message of S/MIME-encrypted MIME enti

9.1CRITICAL

CVE-2026-29142

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to forge a GINA-encrypted email.

5.3MEDIUM

CVE-2026-29141

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to bypass subject sanitization and forge tags such as [sign

5.3MEDIUM

CVE-2026-29140

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to cause attacker-controlled certificates to be used for fu

5.3MEDIUM

CVE-2026-29139

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows account takeover by abusing GINA account initialization to reset a vict

9.8CRITICAL

CVE-2026-29138

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to claim another user'

7.5HIGH

CVE-2026-29137

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to hide security tags from users by crafting a long subject

5.3MEDIUM

CVE-2026-29136

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to inject HTML into notification emails about new CA certif

6.1MEDIUM

CVE-2026-29135

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to craft a password-tag that bypasses subject sanitization.

7.5HIGH

CVE-2026-29134

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an external user to modify GINA webdomain metadata and bypass per-domai

7.5HIGH

CVE-2026-29133

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to upload PGP keys with UIDs that do not match their email

9.1CRITICAL

CVE-2026-29132

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker with access to a victim's GINA account to bypass a second-p

7.5HIGH

CVE-2026-29131

< 15.0.3

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to read the contents o

7.5HIGH

CVE-2025-20153

all versions

A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to

5.8MEDIUM

CVE-2024-9043

>= 4.2.1 and <= 4.5.0

Secure Email Gateway from Cellopoint has Buffer Overflow Vulnerability in authentication process. Remote unauthenticated attackers

9.8CRITICAL

CVE-2024-20401

< 15.5.1-055

A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticate

9.8CRITICAL

CVE-2024-6744

< 4.5.0

The SMTP Listener of Secure Email Gateway from Cellopoint does not properly validate user input, leading to a Buffer Overflow vuln

9.8CRITICAL

CVE-2023-20120

all versions

Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager; C

5.4MEDIUM

CVE-2023-20119

all versions

A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, formerly k

6.1MEDIUM

CVE-2023-20028

all versions

Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager; C

5.4MEDIUM