CISA Warns of Unauthenticated RCE Vulnerability in SmarterMail Exploited in Ransomware Attacks

The CISA in the United States has issued a warning regarding CVE-2026-24423, an unauthenticated remote code execution (RCE) vulnerability in SmarterMail. This flaw is being actively exploited in ransomware attacks. The vulnerability allows attackers to execute code remotely without requiring prior authentication on servers using SmarterMail.