CVE-2026-23760
CRITICAL Actively ExploitedSmarterTools SmarterMail < Build 9511 Authentication Bypass via Password Reset API
CVSS v3
9.8
CRITICAL
EPSS Score
79.9%
exploit probability
CISA KEV
No
known exploited
Exploitation
active
SSVC status
Description
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system administrator accounts. An unauthenticated attacker can supply a target administrator username and a new password to reset the account, resulting in full administrative compromise of the SmarterMail instance. NOTE: SmarterMail sys
Technical Details
- CVSS v3 Vector
- 3.1
- Published
- 1/22/2026
- Last Modified
- 1/27/2026
Frequently Asked Questions
What is CVE-2026-23760?
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system administrator accounts. An unauthenticated attacker can supply a target administrator username and a new password to reset the account, resulting in full administrative compromise of the SmarterMail instance. NOTE: SmarterMail sys
Is CVE-2026-23760 actively exploited?
Yes. CVE-2026-23760 has been observed in active exploitation according to SSVC analysis.
What is the CVSS score for CVE-2026-23760?
CVE-2026-23760 has a CVSS v3 base score of 9.8 (CRITICAL severity), with vector string 3.1.
Is CVE-2026-23760 affecting your environment?
Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.