SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2025-52691 - VulnDaily - Daily Cybersecurity Vulnerability Intelligence

Executive Summary

SmarterTools SmarterMail contains an unrestricted upload of file with dangerous type vulnerability that could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution.

CVSS Score: 9.0/10.0
Severity: CRITICAL

Affected Systems

SmarterTools SmarterMail

Detection & Mitigation

Apply vendor patches as soon as available
Monitor for indicators of compromise
Review vendor advisories for specific guidance

References

https://nvd.nist.gov/vuln/detail/CVE-2025-52691
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
NVD Entry

SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2025-52691

Executive Summary

Affected Systems

Detection & Mitigation

References

External Resources & References

Vulnerability Databases

Threat Intelligence & Search