CVE-2026-35389 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust…
High CVSS: 8.7

CVE-2026-35389

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, S/MIME signature verification did not validate the certificate trust chain (checkChain: false). Any email signed with a self-signed or untrusted certificate was displayed as having a valid signature. This vulnerability is fixed in 1.4.11.
Vendor
-
Product
-
CWE
CWE-295
Yayın Tarihi
2026-04-06 21:16:20
Güncelleme
2026-04-07 13:20:11
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-295 HIGH 2026

Referanslar

https://github.com/bulwarkmail/webmail/security/advisories/GHSA-v6w6-338p-p256