virus logo Intrusion Prevention

SmarterTools.SmarterMail.CVE-2025-52691.Arbitrary.File.Upload

description-logoDescription

This indicates an attack attempt to exploit an Arbitrary File Upload Vulnerability in the SmarterTools SmarterMail server.
The vulnerability is due to insufficient access controls for file upload on the vulnerable application. A remote attacker can exploit this to upload maliciously crafted files to the target server. Successful exploitation can lead to arbitrary code execution.

description-logoOutbreak Alert

An actively targeted vulnerability has been identified in SmarterTools SmarterMail, tracked as CVE-2025-52691, with a CVSS score of 10.0 (Critical). The flaw allows unauthenticated attackers to upload arbitrary files to any location on the mail server, potentially resulting in remote code execution (RCE).

View the full Outbreak Alert Report

affected-products-logoAffected Products

SmarterTools SmarterMail server build 9406 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.smartertools.com/smartermail/release-notes/current

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2026-01-22 35.156
Modified
 Default_action:pass:drop
2026-01-19 35.153
New
ID 59887
Created Jan 06, 2026
Updated Jan 21, 2026
CVE ID
Tags SmarterTools SmarterMail RCE Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Known Exploited Yes
Exploit Prediction Score 79.94%
Default Action drop
Active
Affected OS Windows
Affected App Other
Profile Type Permission/Privilege/Access Control