Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

WT-2026-0001

SmarterMail authentication bypass exploited days after patch enables admin reset and RCE

News, Research, Vendors, Vulnerabilities

January 23, 2026

An authentication bypass in SmarterMail that allows resetting administrator passwords and enabling system-level command execution was exploited two days after a vendor patch. A watchTowr Labs technical analysis describes the vulnerability and exploitation timeline.

About
Editorial Policy
Privacy
Contact