CVE-2026-29135

Name: CVE-2026-29135 — Vulnerability Record
Brand: Quanteta Data Lab
SKU: CVE-2026-29135

HIGH

CVSS v3.1: 7.5 · EPSS: 0.0010 (28.4 percentile)

NetworkNo privilegesNo user interactionImproper Input Validation

Source data as of: 2026-04-17 06:05:21 UTC

At a glance

Severity: HIGH
CVSS: 7.5 v3.1 · NVD
EPSS: 0.0010 (28.4 percentile) · FIRST.org
CISA KEV: No
Type: Improper Input Validation · NVD CWE
Attack conditions (CVSS vector): NetworkNo privilegesNo user interaction · Source: NVD Vector
Affected vendors: seppmail
Published: 2026-04-02 · Modified: 2026-04-16
References: Jump to references (1)

CVSS v3.1 7.5 / 10 HIGH Source: NVD

CVSS v4.0 5.3 / 10 MEDIUM Source: NVD

EPSS 0.0010 28.4 percentile Source: FIRST.org

CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

SEPPmail Secure Email Gateway before version 15.0.3 allows an attacker to craft a password-tag that bypasses subject sanitization.

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.