Browse all 7 CVE security advisories affecting icewarp. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-25269 | ICEWARP 11.0.0.0 Cross-Site Scripting via Email HTML Injection — ICEWARP ClientCWE-79 | 6.1 | Medium | 2026-04-22 |
| CVE-2026-2493 | IceWarp collaboration Directory Traversal Information Disclosure Vulnerability — IceWarpCWE-22 | 7.5AI | HighAI | 2026-03-13 |
| CVE-2025-14500 | IceWarp14 X-File-Operation Command Injection Remote Code Execution Vulnerability — IceWarpCWE-78 | 9.8AI | CriticalAI | 2025-12-23 |
| CVE-2025-14499 | IceWarp gmaps Cross-Site Scripting Authentication Bypass Vulnerability — IceWarpCWE-79 | 8.8AI | HighAI | 2025-12-23 |
| CVE-2025-40632 | Cross-site scripting (XSS) vulnerability in IceWarp Mail Server — Icewarp Mail ServerCWE-79 | 6.1AI | MediumAI | 2025-05-16 |
| CVE-2025-40631 | HTTP host header injection vulnerability in IceWarp Mail Server — Icewarp Mail ServerCWE-644 | 6.1AI | MediumAI | 2025-05-16 |
| CVE-2025-40630 | Open redirection vulnerability in IceWarp Mail Server — Icewarp Mail ServerCWE-601 | 6.1AI | MediumAI | 2025-05-16 |
This page lists every published CVE security advisory associated with icewarp. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.