Stack-based Buffer Overflow in MailGates/MailAudit by Openfind
CVE-2026-6350

9.3CRITICAL

Key Information:

Vendor: Openfind
Status: Mailgates; Mailaudit
Vendor: CVE Published:; 16 April 2026

What is CVE-2026-6350?

The MailGates/MailAudit software developed by Openfind is susceptible to a stack-based buffer overflow vulnerability. This flaw enables unauthenticated remote attackers to manipulate the program's execution flow, potentially leading to the execution of arbitrary code. Organizations using affected versions should prioritize updating to the latest release to mitigate risks associated with this vulnerability.

Affected Version(s)

MailAudit 6.0 < 6.1.10.054

MailAudit 5.0 < 5.2.10.099

MailGates 6.0 < 6.1.10.054

References

https://www.twcert.org.tw/tw/cp-132-10844-1405d-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-10843-9ff91-2.html

third-party-advisory

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 16, 2026
Vulnerability Reserved
Apr 15, 2026

CVE-2026-6350 Data

JSON