CVE Catalog

CVE-2026-50880

CriticalCVSS 9.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.17%

6th percentile — higher than 6% of all known CVEs

Summary

An issue in the sendmail transport integration component of YouTransfer v1.0.6 allows attackers to execute arbitrary code via supplying a crafted request.

Risk Assessment

This vulnerability may lead to remote code execution, posing a serious threat to system security and user data.

Recommendation

It is recommended to update YouTransfer to the latest version to mitigate this vulnerability and to monitor the system for unauthorized activities.

Original NVD description (English source)

An issue in the sendmail transport integration component of YouTransfer v1.0.6 allows attackers to execute arbitrary code via supplying a crafted request.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS