CVE-2026-41113
HIGHsagredo qmail >=2024.10.26 <2026.04.07 - Remote Code Execution via tls_quit popen in notlshosts_auto
Title source: llmDescription
sagredo qmail before 2026.04.07 allows tls_quit remote code execution because of popen in notlshosts_auto in qmail-remote.c.
References (6)
Core 6
Scores
CVSS v3
8.1
EPSS
0.0085
EPSS Percentile
53.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-78
Status
published
Products (1)
sagredo/qmail
2024.10.26 - 2026.04.07
Published
Apr 16, 2026
Tracked Since
Apr 17, 2026