CVE advisoryKnown Exploit
CVE-2025-52691
SmarterMail Unrestricted File Upload Vulnerability
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
An unauthenticated attacker can upload arbitrary files to a mail server, potentially enabling remote code execution. This impacts mail server systems and business data, posing a risk of operational disruption and unauthorized access.