CNNVD-202511-414 Information

CNNVD ID

CNNVD-202511-414

Related CVE

CVE-2025-61084

• CNNVD Published: 2025-11-05

Description (Chinese)

MDaemon Mail Server是美国MDaemon公司的一个电子邮件服务器软件。 MDaemon Mail Server 23.5.2版本存在安全漏洞，该漏洞源于使用SMTP DATA中From标头的尖括号内电子邮件验证SPF、DKIM和DMARC时存在缺陷，可能导致电子邮件欺骗攻击。

Description (English)

Mdaemon Mail Server is an e-mail server software for the United States company Mdaemon. There is a security loophole in version 23.5.2 of MDaemon Mail Server, which stems from deficiencies in the authentication of SPF, DKIM and DMARRC using sharp parenthesis of the From marker in SMTP DATA, which may result in an e-mail fraud attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

MDaemon

Published

2025-11-05

Last Modified

2026-02-24

References

https://github.com/x00nullbit/CVE-References/blob/main/CVE-2025-61084/README.md https://access.redhat.com/security/cve/cve-2025-61084