SmarterTools SmarterMail < Build 9511 Unauthenticated RCE via ConnectToHub API

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the vulnerable application.

Basic Information

ID CVE-2026-24423

Source VulnCheck

Published Jan 23, 2026 at 16:53

Modified Jan 24, 2026 at 04:55

Affected Product

Vendor SmarterTools

Product SmarterMail

Affected Versions SmarterTools SmarterMail 0

CWE Classification

CWE-306

References

{
    "lastseen": "",
    "description": "SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the vulnerable application.",
    "published": "2026-01-23T16:53:34.951Z",
    "modified": "2026-01-24T04:55:34.292Z",
    "type": "cve",
    "title": "SmarterTools SmarterMail < Build 9511 Unauthenticated RCE via ConnectToHub API",
    "source": "VulnCheck",
    "references": "https://www.smartertools.com/smartermail/release-notes/current\nhttps://code-white.com/public-vulnerability-list/#systemadminsettingscontrollerconnecttohub-missing-authentication-in-smartermail\nhttps://www.vulncheck.com/advisories/smartertools-smartermail-unauthenticated-rce-via-connecttohub-api",
    "id": "CVE-2026-24423",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "SmarterTools SmarterMail 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SmarterMail",
    "version": "0",
    "vendor": "SmarterTools",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

SmarterTools SmarterMail < Build 9511 Unauthenticated RCE via ConnectToHub API_CVE-2026-24423