Multiple SMTP Servers Vulnerable to Spoofing Attacks, Let Hackers Bypass Authentication
Multiple SMTP Servers Vulnerable to Spoofing Attacks, Let Hackers Bypass Authentication
31 July 2024
Multiple SMTP servers are vulnerable to spoofing attacks that allow hackers to bypass authentication. Two vulnerabilities, CVE-2024-7208 and CVE-2024-7209, exploit weaknesses in authentication and verification mechanisms provided by SPF and DKIM.