CVE-2026-35391

EPSS 0.02%
Veröffentlicht 06.04.2026 20:17:39
Zuletzt bearbeitet 09.04.2026 20:59:25
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Bulwark Webmail is a self-hosted webmail client for Stalwart Mail Server. Prior to 1.4.11, the getClientIP() function in lib/admin/session.ts trusted the first (leftmost) entry of the X-Forwarded-For header, which is fully controlled by the client. An attacker could forge their source IP address to bypass IP-based rate limiting (enabling brute-force attacks against the admin login) or forge audit log entries (making malicious activity appear to originate from arbitrary IP addresses). This vulnerability is fixed in 1.4.11.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bulwarkmail ≫ Webmail Version < 1.4.11

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.054

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
security-advisories@github.com	8.7	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-348 Use of Less Trusted Source

The product has two different sources of the same data or information, but it uses the source that has less support for verification, is less trusted, or is less resistant to attack.

https://github.com/bulwarkmail/webmail/security/advisories/GHSA-7pj2-232x-6698

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-35391

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-35391

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-35391

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-35391