CVE-2026-9592

CVE-2026-9592CVE-2026-9592

Description

SEPPmail Secure Email Gateway & SEPPmail Cloud before version 15.0.4.2 allows an attacker to replay & hijack a user session in the GINA web portal, as the session token is disclosed inside the URL and a HTTP header.

Scoring

Last modified2026-07-17
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.