CVE-2025-50340
MEDIUMSOGo Webmail <5.6.0 - Privilege Escalation
Title source: llmDescription
An Insecure Direct Object Reference (IDOR) vulnerability was discovered in SOGo Webmail thru 5.6.0, allowing an authenticated user to send emails on behalf of other users by manipulating a user-controlled identifier in the email-sending request. The server fails to verify whether the authenticated user is authorized to use the specified sender identity, resulting in unauthorized message delivery as another user. This can lead to impersonation, phishing, or unauthorized communication within the system. NOTE: this is disputed by the Supplier because the only effective way to prevent this sender spoofing is on the SMTP server, not within a client such as SOGo.
Exploits (1)
nomisec
WRITEUP
by millad7 · poc
https://github.com/millad7/SOGo_web_mail-vulnerability-CVE-2025-50340
Scores
CVSS v3
4.3
EPSS
0.0007
EPSS Percentile
20.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-639
Status
published
Published
Aug 04, 2025
Tracked Since
Feb 18, 2026