Home / Vulnerability Intelligence / CVE-2026-6350

CVE-2026-6350 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: April 17, 2026

Openfind MailGates/MailAudit - Buffer Overflow

Published: April 16, 2026Updated: April 17, 2026Remote Exploitable

Overview

Openfind MailGates/MailAudit contains a stack-based buffer overflow caused by improper input handling, letting unauthenticated remote attackers execute arbitrary code by controlling program execution flow.

Severity & Score

Severity: Critical

CVSS Score: 9.8

EPSS Score: 5.8%(Probability of exploitation in next 30 days)

Impact

Unauthenticated remote attackers can execute arbitrary code, potentially leading to full system compromise.

Mitigation

Update to the latest version of MailGates/MailAudit.

References

Social Media Activity(2 posts)

TheHackerWire

@thehackerwire

Apr 16, 2026

🔴 CVE-2026-6350 - Critical (9.8) MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing unauthenticated remote attackers to control the program's execution flow and execute arbitrary code. 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-6350/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

OffSequence

@offseq

Apr 16, 2026

🚨 CRITICAL: CVE-2026-6350 in Openfind MailGates 6.0 & 5.0 — stack-based buffer overflow enables unauthenticated RCE. No mitigation yet. Restrict exposure & watch for updates. https://radar.offseq.com/threat/cve-2026-6350-cwe-121-stack-based-buffer-overflow--d51a62db #OffSeq #MailGates #CVE20266350 #infosec

View original post

Related Resources

Details

CVE ID: CVE-2026-6350
Severity: Critical
CVSS Score: 9.8
Type: buffer_overflow
Status: unconfirmed
EPSS: 5.8%
Social Posts: 2

CWE

CWE-121

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

5.8%Probability of exploitation in the next 30 days