CVE-2026-49103

NONE

—CVSS v3

—CVSS v2

0.05% EPSS (exploit probability)

CWE-24CWE

Description

Webmin before 2.640 does not safely construct a filename for saving of an attachment within the mailboxes component. This occurs in mailboxes/detachall.cgi.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE