CVE-2025-52374 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.ex…
Medium CVSS: 4.6

CVE-2025-52374

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections.
Vendor
Hmailserver
Product
Hmailserver
CWE
CWE-321
Yayın Tarihi
2025-07-21 16:15:30
Güncelleme
2025-08-07 18:00:58
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-321 Hmailserver MEDIUM Hmailserver 2025

Referanslar

https://github.com/hmailserver/hmailserver https://github.com/mojibake-dev/hMailEnum https://github.com/mojibake-dev/mojibake-CVE/blob/main/hMailServer/CVE-2025-52374.md