执行摘要 SmarterTools SmarterMail 在其 ConnectToHub API 功能中发现了一个严重的远程代码执行漏洞。该漏洞被分配为 CVE-2026-24423，CVSS v4 评分为 9.3（严重）。 攻击者可以通过构造恶意的 HTTP 服务器，配合 SmarterMail 的 ConnectToHub 功能，在未经身份验证的情况下实现远程代码执行。该漏洞源于以...

Executive Summary A critical remote code execution vulnerability has been discovered in SmarterTools SmarterMail’s ConnectToHub API functionality. This vulnerability has been assigned CVE-2026-244...

一、漏洞概述 项目 内容 CVE编号 CVE-2025-55182 漏洞类型 远程代码执行 (RCE) 漏洞组件 React Flight Protocol (react-server-dom-webpac...

This article was first published on our team’s. Click here to read the Chinese version. https://mp.weixin.qq.com/s/6kuuU0WcrWqI-hw2PSoYmA Introduction This paper is a vulnerability analysis revie...

This article was first published on our team’s. Click here to read the Chinese version. https://mp.weixin.qq.com/s/k74R7FcWcjIBqLJa0eTwRg Introduction Those who pay attention to security consulti...