CVE-2026-41319 - MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade
CVE ID :CVE-2026-41319 Published : April 24, 2026, 4:16 a.m. | 1 hour, 36 minutes ago Description :MailKit is a cross-platform mail client library built on top of MimeKit. A STARTTLS Response Injection vulnerability in versions prior to 4.16.0 allows a Man-in-the-Middle attacker to inject arbi
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] PhantomRPC: A new privilege escalation technique in Windows RPC
- [CYBER] Mantle proposes up to 30,000 ETH loan to address Aave bad debt from Kelp exploit
- [CYBER] Mantle proposes up to 30,000 ETH loan to address Aave bad debt from Kelp exploit - The Block
- [CYBER] LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
- [CYBER] CVE-2026-1952 - Denial of service via the undocumented subfunction in AS320T
- [CYBER] CVE-2026-1951 - No checking of the length of the buffer with the directory name in AS320T