CVE-2025-34489 | GFI MailEssentials up to 21.7 .NET Remoting Service deserialization

Inserito da Angelo Barbosa | Apr 28, 2025 | CVE

A vulnerability, which was classified as critical, has been found in GFI MailEssentials up to 21.7. This issue affects some unknown processing of the component .NET Remoting Service. The manipulation leads to deserialization.

The identification of this vulnerability is CVE-2025-34489. The attack needs to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-34489 | GFI MailEssentials up to 21.7 .NET Remoting Service deserialization

Post correlati

CVE-2024-8573 | TOTOLINK AC1200 T8/AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207 /cgi-bin/cstecgi.cgi setParentalRules desc buffer overflow

CVE-2024-47522 | OISF Suricata up to 7.0.6 TLS/QUIC assertion

CVE-2024-41614 | Symphony CMS up to 2.7.10 Comment Component cross site scripting

CVE-2024-0597 | Squirrly SEO Plugin up to 12.3.15 on WordPress Setting cross site scripting